Active Directory Integration



Similar documents
Migrating helpdesk to a new server

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Server Installation, Administration and Integration Guide

IIS, FTP Server and Windows

BusinessObjects Enterprise XI Release 2

Massey University Wireless Network Client Configuration Windows 7

Active Directory Authentication Integration

SecureAware on IIS8 on Windows Server 2008/- 12 R2-64bit

Integrating LANGuardian with Active Directory

How to monitor AD security with MOM

Cloud Services ADM. Agent Deployment Guide

SchoolBooking SSO Integration Guide

Immotec Systems, Inc. SQL Server 2005 Installation Document

How To Create An Easybelle History Database On A Microsoft Powerbook (Windows)

Windows 7 Hula POS Server Installation Guide

NetSupport DNA Configuration of Microsoft SQL Server Express

Configuring the Active Directory Plug-in

SQL Server 2008 R2 Express Edition Installation Guide

HOW TO CONFIGURE SQL SERVER REPORTING SERVICES IN ORDER TO DEPLOY REPORTING SERVICES REPORTS FOR DYNAMICS GP

Click Studios. Passwordstate. Installation Instructions

Installing SQL Express. For CribMaster 9.2 and Later

2. PMP New Computer Installation. & Networking Instructions

Active Directory Management. Agent Deployment Guide

Overview How it works: Features: Page 1

SCADA Security. Enabling Integrated Windows Authentication For CitectSCADA Web Client. Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.

SQL EXPRESS INSTALLATION...

Alert Notification of Critical Results (ANCR) Public Domain Deployment Instructions

Step-by-Step Guide to Setup Instant Messaging (IM) Workspace Datasheet

Wireless Network Configuration Guide

Setup and configuration for Intelicode. SQL Server Express

Active Directory Validation - User Guide

Quick Start Guide v4.0 Client Outlook Connection

SMS for Outlook. Installation, Configuration and Usage Guide

Lepide Active Directory Self Service. Configuration Guide. Follow the simple steps given in this document to start working with

Setting Up Your FTP Server

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

Livezilla How to Install on Shared Hosting By: Jon Manning

FAQs. OneDrive for Business?

NetSupport DNA Configuration of Microsoft SQL Server Express

TypingMaster Intra. LDAP / Active Directory Installation. Technical White Paper (2009-9)

Advantage for Windows Copyright 2012 by The Advantage Software Company, Inc. All rights reserved. Client Portal blue Installation Guide v1.

Active Directory and Cisco CallManager Integration Troubleshooting Guide

Getting Started Guide

Change Advanced Proxy Server Configuration Settings

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

Quickstart guide to Configuring WebTitan

How To Fix A Backup Error In A Windows Xp Server On A Windows (Windows) On A Pc Or Mac Xp (Windows 7) On An Uniden Computer (Windows 8) On Your Computer Or Your Computer (For

Installing Active Directory

How to recover IE Client

AD Self Password Reset Installation and configuration

FAQs. OneDrive for Business?

OUTLOOK ANYWHERE CONNECTION GUIDE FOR USERS OF OUTLOOK 2010

QUANTIFY INSTALLATION GUIDE

PaperStream Connect. Setup Guide. Version Copyright Fujitsu

Click Studios. Passwordstate. Installation Instructions

Installing Microsoft Outlook on a Macintosh. This document explains how to download, install and configure Microsoft Outlook on a Macintosh.

IIS Easy Migration Tool - Quick Start Guide

NT Authentication Configuration Guide

FieldIT Limited FieldIT CRM. Installation Manual v1.3.i3 (Enterprise Install)

Richmond Systems. SupportDesk Quick Start Guide

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

InfoRouter LDAP Authentication Web Service documentation for inforouter Versions 7.5.x & 8.x

HELP DESK PORTAL INSTALLATION GUIDE

Setting up Sharp MX-Color Imagers for Inbound Fax Routing to or Network Folder

Web Authentication Application Note

Configuration Guide. SafeNet Authentication Service. SAS Agent for Microsoft Internet Information Services (IIS)

Schools Remote Access Server

Sophos Mobile Control Installation guide

Service Desk R11.2 Upgrade Procedure - Resetting USD passwords and unlocking accounts in etrust Web Admin

Connecting to the University Wireless Network

User Management Tool 1.5

Welcome to the TransPerfect Translations Secure File Transfer Website What is Secure FTP?

Authentication Methods

Download and Launch Instructions for WLC Client App Program

How To Set Up Dataprotect

Agent Configuration Guide

MailEnable Connector for Microsoft Outlook

Virtual Office Remote Installation Guide

Okta/Dropbox Active Directory Integration Guide

How To Connect To A Wireless Network On Windows 7 (Windows 7) On A Pc Or Mac Or Ipad (Windows) On Pc Or Ipa (Windows 8) On Your Computer Or Mac (Windows). (Windows.7) On An

Active Directory Integration

LT Auditor Windows Assessment SP1 Installation & Configuration Guide

How To Set Up A Macintosh With A Cds And Cds On A Pc Or Macbook With A Domain Name On A Macbook (For A Pc) For A Domain Account (For An Ipad) For Free

Database Assistant. Once Database Assistant is installed you must login to gain access to the database. Copyright 2009

NetIQ. How to guides: AppManager v7.04 Initial Setup for a trial. Haf Saba Attachmate NetIQ. Prepared by. Haf Saba. Senior Technical Consultant

Massey University Wireless Network Client Configuration Mac OS X

NSi Mobile Installation Guide. Version 6.2

How To Sync Google Drive On A Mac Computer With A Gmail Account On A Gcd (For A Student) On A Pc Or Mac Or Mac (For An Older Person) On An Ipad Or Ipad (For Older People) On

TIGERPAW EXCHANGE INTEGRATOR SETUP GUIDE V3.6.0 August 26, 2015

Online Statements. About this guide. Important information

Test Case 3 Active Directory Integration

Avatier Identity Management Suite

Windows XP Exchange Client Installation Instructions

Secure Messaging Server Console... 2

TECHNICAL NOTE. The following information is provided as a service to our users, customers, and distributors.

Configuring the Samsung SDS CellWe EMM cloud connector

ALTIRIS CONNECTOR 6.0 FOR ACTIVE DIRECTORY HELP

Active Directory Integration Guide

Transcription:

Active Directory Integration Last updated March 2016 Contents Introduction:... 2 Administration configuration set up:... 2 Configuring for a single OU import... 3 User Importing... 3 Active Directory and helpdesk field mappings... 5 Trouble shooting AD Integration :... 7 Configure sitehelpdesk to use NT/windows Authentication... 8 2016 sitehelpdesk.com Ltd Page 1

Introduction: Sitehelpdesk, sitehelpdesk-it and sitehelpdesk-fm provides integration with Microsoft Windows Active Directory to maintain the list of users. This can be used to perform an initial import or to synchronise sitehelpdesk with the Active Directory once new user accounts are created. Administration configuration set up: Firstly say YES to provide the import and sync options on the Admin, User page. Do you want to integrate with Active Directory? No The id and password of an account with privilege to access AD must be entered here: Enter Network Account with Active Directory access: domain\acco and Password : Information of the AD domain to search and import is then entered: Enter Active Directory Domain : mycompany.com and NT Domain : mycompany Note : Active Directory domain name is case sensitive. The NT domain name must be entered. This is used to prefix the user id to authenticate them later. E.g domain\id is held in the user NT Account field and is used to match user id s when they go to the user log page under windows authentication mode. When configured you must Apply Changes Run a test to make sure you make connection OK. If you have a large Active Directory database then you may experience time out errors. See the trouble shooting section to resolve these. You also have the option of configuring the AD domain to import single OU s. 2016 sitehelpdesk.com Ltd Page 2

Configuring for a single OU import Open Administration, Configuration, and locate the Active Directory section. This typically contains just the domain name i.e. mycompany.com. You can limit the results to certain OUs by using the following format in the Active Directory Domain name... IPAddress/OU=xxx,DC=xxx where IPaddress is the IP address of your Active Directory server, OU is the organizational unit and DC is the Domain name. For example... If the domain is mycompany.com, your domain controller IP address is 10.11.1.1, and you have a London OU, below a People OU you should enter the following... 10.11.1.1/OU=London,OU=People,DC=mycompany,DC=com This will return details of all users in containers below People, London. If the domain is mycompany.co.uk, your domain controller IP address is 10.11.1.2, and you have a Teachers OU you should enter the following... 10.11.1.2/OU=Teachers,DC=mycompany,DC=co,DC=uk This will return details of all users in containers below Teachers. User Importing You will now be able to import and synchronise the helpdesk user records with your Active Directory LDAP database. AD Import and AD Synchronisation options via User, Administration 2016 sitehelpdesk.com Ltd Page 3

Carry out an import initially via AD Import, tick all the user records you want to bring into the helpdesk. The periodically you can carry out a sync. This uses the Active Directory as the master database and will compare the records with the helpdesk and list all those where there are differences. You can scroll the list and flag for import those that you want to update in the helpdesk. Note: the helpdesk will never write back into AD. 2016 sitehelpdesk.com Ltd Page 4

Active Directory and helpdesk field mappings These screen shots demonstrate the mapping of Active Directory records to sitehelpdesk / sitehelpdesk-it via AD import. AD General Tab Active Directory field Name Display name Office Telephone number E-mail Sitehelpdesk Default field Name User name Site Phone No. Email Address 2016 sitehelpdesk.com Ltd Page 5

Organization Tab Active Directory field Name Title Department Sitehelpdesk Default field Name Job Title Department 2016 sitehelpdesk.com Ltd Page 6

Trouble shooting AD Integration : Error message: ENGLISH: ASP 0113 - Script timed out SQL time out 80040e31 Resolution: This can occur when a page exceeds the timeout value. For example when adding large attachments or accessing Active Directory. By default IIS sets the timeout at 90 seconds. You can increase it as follows... - Open IIS Manager - Right click on the sitehelpdesk virtual directory and select Properties - Click on Configuration button (on Virtual Directory tab) - Click on Options tab - Change the ASP Script Timeout value to 180 - Click on Apply and OK It should pick up that Change straight away, but you may need to stop / start the Default Web Site. 2016 sitehelpdesk.com Ltd Page 7

Configure sitehelpdesk to use NT/windows Authentication Configure IIS IIS 6 - From IIS, expand (+) the sitehelpdesk virtual directory to display folders - IMPORTANT to only apply to user folder - Right click on the User folder and select Properties - Click on Directory Security tab, click on Edit button - Remove Anonymous access and tick only Integrated Windows authentication - Stop and Restart the Default Web Site for changes to take effect - You will need to ensure that Domain Users have access to the \sitehelpdesk\user folder, files and subfolder (every one full control will cover this) IIS 7 From IIS, expand (+) the sitehelpdesk virtual directory to display folders - Click on the User folder to bring up icons relevant to that folder only. - Double Click on Authentication icon - Disable Anonymous access and only Enable Integrated Windows authentication - Stop and start the IIS Service - You will need to ensure that Domain Users have access to the \sitehelpdesk\user folder, files and subfolder (Everyone full control covers this) Configure Helpdesk In Administration, Configuration set the User Logging Options How would you like your end users to enter their user credentials? Windows Authentication - In Administration, Users ensure that all users have NT Account. Needs to be in domain\account format. Users will only be able log and view support calls if they exist in the User database and will only ever see their own calls. Any users who do not exist will not be able to log or view calls. If the user gets an message saying they are not authorised to log call then this will be because their domain\id cannot be found in the user records If the user page has a blank name field and authentication is not happening then use this test copy /sitehelpdesk/tools/testserverconfig.asp to /user folder then access http://{webserver}/sitehelpdesk/user/testserverconfig.asp The AUTH_USER parameter should show the login of the current user. If it is blank then windows authentication is not done properly. If it does show then this is what it will match against the NT Account in User Admin or the email address depending on how you authenticate when logging onto the domain 2016 sitehelpdesk.com Ltd Page 8

Troubleshooting Windows authentication If you use proxy servers then you may need an explicit bypass under IE Tools, options, connections, by pass proxy, advanced. For windows authentication across domains, this resource may prove useful. http://www.olegsych.com/2009/05/crossing-domain-boundaries-windows-authentication/ If you are using IIS 7 and still get asked to authenticate when accessing the User pages check this resource https://www.sitehelpdesk.com/sitewebdesk/attachments/(faq29)%20application-pool.pdf Firefox and chrome may not allow access using windows authentication by default like IE will. This document will help configure those browsers. https://www.sitehelpdesk.com/sitewebdesk/attachments/(faq29)%20configuring%20chrom e%20and%20firefox%20for%20windows%20integrated%20authentication.pdf 2016 sitehelpdesk.com Ltd Page 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information