Adding an Active Directory Domain - Legacy Authentication Methods - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Standard - Essential - Premier

Legacy Authentication Methods

Platform
OnBase
Product
Legacy Authentication Methods
Release
Foundation 23.1
License
Standard
Essential
Premier

To add an Active Directory Domain:

  1. Click the + button above the Configured Active Directory Domains pane or select Add Domain from the right-click menu.

    The Add New Domain dialog box is displayed.

  2. Enter the name of the domain in the Domain field. This must be the actual name of a domain and the server must be online to complete the configuration.
  3. Ensure that Enabled is selected. If Enabled is deselected, the domain is not used to authenticate against.

    Disabled domains are visually represented in the Configured Active Directory Domains pane by a dark screen on the icon, as shown beside A in the following illustration. B represents an enabled domain.

  4. Select Alternate Binding Credentials to specify the user account against which the security context for the domain should be resolved. If this option is deselected, the security context of the user currently logged in to Windows, or of the impersonation account when OnBase is being accessed using the OnBase application server, is used to resolve the groups within the domain.
    Tip:

    It is a best practice to deselect the Alternate Binding Credentials option and use the default account to obtain the security context.

  5. Select Resolve Group Foreign Security Principals to resolve User Group Foreign Security Principals that are mapped to OnBase groups. This setting has no effect on User Foreign Security Principals.

    If this option is deselected, User Group Foreign Security Principals are not included when authenticating a user against the domain.

    In order for a User Group Foreign Security Principal to resolve, the domain in which it resides must also be a configured domain in OnBase.

    Note:

    Selecting this option may increase login time for users.

  6. Select Use SSL When Available to use an HTTPS binding between the client and the server. The server must be configured to support HTTPS bindings.
  7. Click Add. If the Domain name entered is not valid or the server is offline, the Could not resolve domain error is displayed.
  8. Click Apply to save the configuration changes and continue working in the Active Directory - Enhanced dialog box, or click OK to save the configuration changes and close the Active Directory - Enhanced dialog box.