Active Directory Setup
When using Active Directory, the process involves setting up the initial domain that will drive the authentication. After this, admins can add more domains that go beyond the initial setup.
Initial Setup
Active Directory Settings
- LDAP Address: The LDAP address in the format LDAP://DC=X,DC=Y,DC=z.
- Domain Name: The NetBios Domain name. The domain is usually a short name. Typically, it's the "X" in the LDAP address below.
- Port: The LDAP server port. Usually 389.
- Secure Model: Indicate if you are using the "LDAPS" protocol.
Note: Set the Active Directory forest as the default domain to enable UPN login for all the users in the Active Directory forest.
The default domain is used when performing initial look-ups for new user accounts. It is also used to attempt user authentication when the user ID provided in the authentication process does NOT include a domain designation.
Domain User
A domain user account that will be used to log into the domain to check user credentials. This user is usually part of the domain itself, but it can be another user from a different domain in the forest if needed.
- User Name: The name of an account with rights to traverse the LDAP database.
- Password: The user's password.
- Domain: If the user is not part of the initial domain in the setup, select the Use a different domain checkbox and supply a Domain name.
Subsequent Domain Setup
To add more domains to the Active Directory framework, click Add Domain in the top-right corner.
- LDAP Address: The LDAP address in the format LDAP://DC=X,DC=Y,DC=z.
- Domain Name: The NetBios Domain name. The domain is usually a short name. Typically, it's the "X" in the LDAP address below.
- Port: The LDAP server port. Usually 389.
- Secure Model: Indicate if you are using the "LDAPS" protocol.
A domain user account that will be used to log into the domain to check user credentials. (This user is usually part of the domain itself, but it can be another user from a different domain in the forest if needed.)
- User Name: The name of an account with rights to traverse the LDAP database.
- Password: The user's password.
- Domain: If the user is not part of the initial domain in the setup, select the Use a different domain checkbox and supply a Domain name.