Active Directory Setup
When using Active Directory, the process involves setting up the initial domain that will drive the authentication. After this, admins can add more domains that go beyond the initial setup.
Initial Setup
General AD Details
- Domain Name: provide the NetBios Domain name. The domain is usually a short name. Typically its the "X" in the LDAP address below.
- LDAP Address: T This should be provided in the format LDAP://DC=X,DC=Y,DC=z.
- Port: The LDAP server port. Usually 389
- Secure Model: Indicate if you are using the "LDAPS" protocol
Note: Set the Active Directory forest as the default domain to enable UPN login for all the users in the Active Directory forest.
The default domain is used when performing initial look-ups for new user accounts. It is also used to attempt user authentication when the user id provided in the authentication process does NOT include a domain designation.
Domain User
A domain user account that will be used to log into the domain to check user credentials. This user is usually part of the domain itself, but it can be another user from a different domain in the forest if needed.
- Domain - supply a different domain if the user is not part of the initial domain in the setup.
- User Name - the name of an account with rights to traverse the LDAP database
- Password: the user's password
Subsequent Domain Setup
To add more domains to the AD framework, click the "Add Domain" button in the top right hand corner.
- Domain Name: provide the NetBios Domain name. The domain is usually a short name. Typically its the "X" in the LDAP address below.
- LDAP Address: T This should be provided in the format LDAP://DC=X,DC=Y,DC=z.
- Port: The LDAP server port. Usually 389
- Secure Model: Indicate if you are using the "LDAPS" protocol
A domain user account that will be used to log into the domain to check user credentials. This user is usually part of the domain itself, but it can be another user from a different domain in the forest if needed.
- Domain - supply a different domain if the user is not part of the initial domain in the setup.
- User Name - the name of an account with rights to traverse the LDAP database
- Password: the user's password