Adding Domain Controllers for Single Sign-On
To enable Single Sign On, add the external domain to the CommServe for authentication purposes. When adding the domain controller, provide the required information to communicate with the Active Directory service provider, such as domain name, hostname of directory server, directory service type, username and password.
Note: If you are configuring Single Sign On for Compliance Search or Web Console, use the procedure described in the following links as it includes additional required configurations:
Review these important considerations before adding domain controllers:
- The CommServe server must have LDAP, DNS, and Kerberos connectivity to each domain that you want to register for the domain users to log on.
- If you use trusted domains, register both domains with the CommServe server so that users from the trusted domains can log on.
- No two domain controllers can have the same domain name. Do not register duplicate domain controllers with the CommServe server.
Before You Begin
You must have the Add, delete and modify a domain permission at the CommCell level.
- Obtain the domain name and fully qualified domain name of the Active Directory server.
- Verify that LDAP is configured on the Active Directory (AD) server.
- From the CommCell Browser, go to Security.
- Right-click Domains > Add new domain > Active Directory.
- In the Add New Domain Controller dialog box, enter the information about the domain controller:
- In the NetBIOS Name box, enter the domain name, for example, mydomain.
- In the Domain Name box, enter the Fully Qualified Domain Name (FQDN). For example, enter mydomain.mycompany.com.
- To allow users to automatically log on to the CommCell Console, select the Enable SSO check box.
- Beside the User Account box, click Edit.
- In the Enter User Account Information dialog box, enter the user account information for the domain.
The user account must have at least read access to the domain.
- Click OK.
Last modified: 9/19/2018 3:30:34 PM