Configuring TDV as the Server

Administration Guide > Configuring NTLM Authentication > Implementing NTLM Authentication for Windows > Configuring TDV as the Server

If you want TDV to use NTLM to authenticate requests for Web services, you must configure TDV and the TDV resources.

NTLM authentication is generally stronger than Basic authentication. However, because NTLM authentication provides no password information to the server, pass-through authentication might fail for sessions authenticated through NTLM.

To implement NTLM authentication where TDV is the server

1. Install the latest version and patches for TDV.

2. To verify that the necessary libraries and files have been installed, make sure that Common_WindowsSSPI_JNI.dll exists in one of the following directories:

<TDV_install_dir>\apps\server\lib\win64
<TDV_install_dir>\apps\common\lib\win64

3. Configure an LDAP domain.

a. Open Manager in your Web browser.

b. Choose SECURITY > Domain Management to open the DOMAIN MANAGEMENT page.

c. Add a new LDAP domain that specifies an LDAP domain and password.

d. Add the groups and users to the new LDAP domain who need to consume resources using NTLM authentication.

For more information about configuring an LDAP domain, see LDAP Domain Administration.

4. Using Studio, set the NTLM authentication configuration parameters:

a. Choose Administration > Configuration to access the TDV Configuration window.

b. Expand the TDV Server > Configuration > Security > Authentication configuration parameters:.

c. Change parameters as shown in the table.

Parameter	Description of Change to Make
Allow NTLM Authentication	Change this value to True.
Tolerate Unused HTTP Authentication Schemes	Keep the default: WARN (Valid values are WARN, IGNORE, and ERROR.)
Windows Domain Mapping	Enter a key-value pair that maps the Windows domain of an authenticated user to the name of the corresponding external domain as it is defined in the TDV Server (the name of the LDAP domain you created). The values entered are case-sensitive.

5. Continue with Verifying NTLM for a Web Service.

Verifying NTLM for a Web Service

You can verify that the NTLM authentication worked for a REST Web service using the steps below.

Note: You cannot verify a SOAP Web service using a browser.

To verify a REST Web service

1. Create a new REST or SOAP Web service.

2. Publish resources in the new REST or SOAP Web service.

3. Open a browser (for example, Internet Explorer or Firefox) and enter the URL defined for the data source.

4. Enter the username and password when prompted.

5. The results of the Web Service Operation should be displayed.