Setting up Active Directory

Procedure

  1. In the Server Name text field, enter the name of the remote authentication server.
  2. Select the Enable check box to enable this remote authentication server for the appliance after you click Update.
  3. In the Server IP text field, enter the IP address for the remote authentication server.
  4. In the Port text field, enter the port number for the remote authentication server, unless you want to use the listed default.
  5. Select the Enable SSL check box to establish the secure connection on the AD server.
    1. Make sure you have the location of the certificate file.
    2. Enter the following command: 
      keytool -import -alias <alias-of-file> /<location of certificate file> -keystore /loglogic/tomcat/conf/truststore
      For example: 
      keytool -import -alias 2008R2a /tmp/certificate.cer -keystore /loglogic/tomcat/conf/truststore
    3. Restart tomcat.
  6. For Auth Type, select the type of authentication for the Active Directory server to perform: Kerberos or Simple Authentication (username/password).
  7. In the Realm text field, enter the realm for the remote authentication server.
    For example: realm - SQA2008R2a.lab
  8. (Simple Authentication only) In the NT Domain text field, enter the domain name for the remote authentication server. This field is displayed only if you select Simple Authentication as the Auth Type.
    For example: NT Domain - SQA2008Ra
  9. In the User and Password fields, enter the credentials of any user who has access to the Active Directory server. This is required so that when the daily AD user cleanup task runs, if the users with remote authentication are removed from all associated roles or groups, or are disabled or deleted from the AD server, the corresponding users are removed from the Management Users tab.
  10. Click the Test button to test the connection to the specified Active Directory server.
    1. A pop-up prompts you for a login name and password for the server.
    2. Enter a login name and password of any user for the server and click Test Connection.
    3. The pop-up remains open to display the status of the test. If the connection test times out (after fifteen seconds), a time out message appears in the Connection Status box on the pop-up.
  11. Click Update to save your entries or changes.