You can configure a secure Lightweight Directory Access Protocol (LDAP) gateway.
Procedure
-
From the CommCell Browser, click Security > Domains, right-click the identity server, and then click Properties.
The Edit Domain Controller Details dialog box appears.
-
On the General tab, enter the following settings:
-
NetBIOSName: The NetBIOS name of the domain (for example, mydomain).
-
Domain Name: The fully qualified domain name (FQDN) (for example, domain.company.com).
Note
-
You can specify a custom port with the following format: domain.company.com:XXXX, where XXXX is the port.
-
If Use secure LDAP is selected (see below), the domain name is the name of the domain controller (for example, host.domain.company.com).
-
-
User Account: Enter a user account with a minimum of read access to the domain.
Note
Consider using a service account instead of an employee account, in order to prevent disruptions if the employee account is disabled.
-
Use Secure LDAP: Select this option to enable secure LDAP for additional network security with the external domain.
Important
This option is only available when the external domain is configured to use the secure LDAP. If this protocol is enabled from the CommCell Console, but not configured from the external domain, the feature is not enabled.
-
Network Proxy Settings
-
Access the domain controller through: Select this option to use a client computer as a proxy to connect to a remote Active Directory server.
-
Client Name: The client computers that you can use to access the server.
-
-
Description: Enter a description about the entity (for example, the entity's content, cautionary notes, etc.).
-
-
Click Save.
A push install job is triggered, as the system attempts to install the LDAP gateway package on selected proxy machines. You can monitor its status from the Job Controller tab.
Upon completion, users can attempt Active Directory logins.