Active Directory Configuration
Note: we use LDAP as protocol, after the configuration in IF, AD users can login into IF with selecting corresponding IDP type and their user/password.
Microsoft AD:
- Global External Service Provider name: user input
- Client Id: same as server address
- Domain Name: The domain of the AD server, for example: insightfinder.com
- Server Address: The server address where AD is hosted, for example: abc.insightfinder.com
- Bind user id, Client secret: The account that bind the AD server and the password of the bind user, not required, if provided IF can grab all the groups within the server for selection
- Group List: giving a group of users in AD access to IF and assign roles in IF, can also choose System when selecting group, and this System will be automatically shared with all new users from this AD group. Example for group: CN=IF-user-accounts, OU=Dynamic, OU=Groups, DC=insightfinder, DC=com
OpenLDAP:
- Global External Service Provider name: user input
- Bind User Id: The account that bind LDAP server
- Group List:Group List: giving a group of users in AD access to IF and assign roles in IF. For example: CN=IF-user-accounts, OU=Dynamic, OU=Groups, DC=insightfinder, DC=com
- Client Secret: The password of the bind user
- Domain Name: The domain of the AD server, for example: insightfinder.com
- Server Address: The server address where AD is hosted, for example: ldap://1.11.111.11:345
- Login Attribute: allow user to set up the attribute they want to use for log in, for example, uid