Configuring Active Directory Authentication
On enabling Active Directory Authentication, the requester login name and password with its domain will be validated in the Active Directory. Once the login name and password is authenticated in the AD, you can login to AssetExplorer application using your system user name and password on selecting the corresponding domain name.
Thus enabling AD authentication provides you with an advantage of not having to remember too many passwords, say password for logging in to your system and one for logging in to AssetExplorer application and so on.
Note: Please ensure that before you start configuring the AD Authentication, you have already imported the requesters. Only if a user account is available in AssetExplorer application, it will authenticate the password for that user account in the active directory. Hence, when none of the users have been imported from the active directory, the authentication cannot be done for the user account.
To configure the Active Directory Authentication,
Log in to the AssetExplorer application using the user name and password.
Click the Admin tab in the header pane. This opens the Configuration Wizard page.
Under the Organization details block, click the Active Directory icon. This opens the Active Directory page.
Enable or disable active directory authentication. By default the AD authentication will be disabled. If you have already imported requesters from the any of the domains in your network, then click Enable button.
Even after enabling Active Directory (AD) Authentication, if you would like to bypass the AD Authentication, then in the application login screen, you need to select Local Authentication from the Domain list box after entering the login name and password, and then click Login button to enter AssetExplorer.
If you have not yet imported requesters from any of the domains, you can import them by clicking Import Requesters from Active Directory link. The Import From Active Directory window pops up.
From the list of domains that are listed in the Domain Name combo box, select the domain name in which the active directory from which you wish to import is installed. If the other details such as domain controller name, user name, and password have already been entered in the Domain scan page, then that will be populated automatically. Else enter the name of the domain controller in the Domain Controller Name field, login name and password in the corresponding fields.
You also have an option to select the fields to import from the active directory. The unselected fields will not be imported. This is to avoid over ridding of the new values by the old values from the directory.
Click Import Now !. The import wizard displays the various Organizational Units (OUs) available in that domain. Choose the specific OU from which you wish to import users by selecting the check box beside it.
Click Start Importing. Once the import is complete, the data on how many records were added, how many overwritten, and how many failed to import will be displayed.
Schedule AD import
You have an option to schedule Active Directory import in specified number of days.
Select the Schedule AD import check box. Specify the number of days in the text box. The requester details gets imported automatically once in specified number of days.
Click Save Schedule button to be in sync with the active directory.