Presentation is loading. Please wait.

Presentation is loading. Please wait.

August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee.

Published byWalter Evans Modified over 8 years ago

Similar presentations

Presentation on theme: "August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee."— Presentation transcript:

1 August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee

2 This will allow CenterView to determine what user has signed into an Active Directory Domain, and based on that user, get the groups that user is a member of based on the existing Active Directory Authentication plugin. August 25, 20152

3 Server Setup Perform on the server –Drop jcifs-1.2.22.jar into /Server/corda/WEB-INF/lib/ August 25, 20153

4 Server Setup Perform on the server Add the contents of AD_SSO_Filter.txt to the beginning of the filter section of /Server/corda/WEB-INF/web.xml Add the contents of AD_SSO_Filter.txt to the beginning of the filter mapping section of /Server/corda/WEB-INF/web.xml August 25, 20154

5 Server Setup Perform on the server Set the Domain controller address, Domain Name, Username and Password (same as Bind User and Password in AD Auth Plugin) jcifs.http.domainController: enter the DNS or IP address of the LDAP Server (e.g. 10.10.1.110, or server.domain.com) jcifs.smb.client.domain: Enter the domain of the server you are authenticating against (e.g. corda.com) jcifs.smb.client.username:Enter an app account without the domain name (e.g. binduser NOT binduser@corda.com) jcifs.smb.client.password: app account’s password August 25, 20155

6 Server Setup Perform on the server Optional parameter for enabling logging jcifs.util.loglevel: 0=off-10=verbose default=1 jcifs.util.loglevel 3 Information is sent to the standard CenterView logs August 25, 20156

7 Server Setup Perform on the server Modify the authenticate method of /Server/plugins/src/examples/auth/activedirectory/ADAuth Plugin.java to use request.getRemoteUser() as the userName (compare the included ADAuthPlugin.java with the one installed with CenterView) Build the Auth Plugin and put the class file in the correct directory NOTE: I suggest creating a new auth plugin and copying the existing ADAuthPlugin source rather than just modifying the existing one. August 25, 20157

8 Web Browser Perform the steps in the following slides in the browser 8/25/20158

9 Add the URL to the Local Intranet Zone in Internet Explorer August 25, 2015 9

10 Add the URL to the network.automatic-ntlm- auth.trusted-uris in Firefox August 25, 201510

11

Download ppt "August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee."

Similar presentations

E-mail Quick Start Guide. To setup another email account (aside from the school email) 1) Tap “Settings”

Quick Start Guide. To setup another account (aside from the school ) 1) Tap “Settings”
© 2009 GroundWork Open Source, Inc. PROPRIETARY INFORMATION: Information contained herein is not for use or disclosure outside of GroundWork Open Source,

© 2009 GroundWork Open Source, Inc. PROPRIETARY INFORMATION: Information contained herein is not for use or disclosure outside of GroundWork Open Source,
Web Filtering. ExchangeDefender Web Filtering provides policy-controlled protection from dangerous content on the web. Web Filtering is agent based, allowing.

Web Filtering. ExchangeDefender Web Filtering provides policy-controlled protection from dangerous content on the web. Web Filtering is agent based, allowing.
SmartCall™ SMS SmartCall SMS by HME Wireless is a great tool to manage your patient workflow through your facility. Using the SmartCall SMS system, staff.

SmartCall™ SMS SmartCall SMS by HME Wireless is a great tool to manage your patient workflow through your facility. Using the SmartCall SMS system, staff.
Microsoft Excel 2003 Illustrated Complete Excel Files and Incorporating Web Information Sharing.

Microsoft Excel 2003 Illustrated Complete Excel Files and Incorporating Web Information Sharing.
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
SmartCall™ Messenger Account Setup

SmartCall™ Messenger Account Setup
Peter Ginnegar Technical Solution Professional Microsoft Corporation

Peter Ginnegar Technical Solution Professional Microsoft Corporation
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
What is ERoom? Created August 5, 2004. Agenda How to log in Directory structure –RFI –Class directories –Team directories How to download/upload files.

What is ERoom? Created August 5, Agenda How to log in Directory structure –RFI –Class directories –Team directories How to download/upload files.
DVG-N5402SP.

DVG-N5402SP.
Enterprise Single Sign On Identity management for web applications.

Enterprise Single Sign On Identity management for web applications.
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.

Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.
1 Mapping a Drive on the USF IIS Server. 2 Mapping a Drive To map a drive to a network file directory in Windows you must be on a Microsoft local area.

1 Mapping a Drive on the USF IIS Server. 2 Mapping a Drive To map a drive to a network file directory in Windows you must be on a Microsoft local area.
VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.

VPN Scenarios © N. Ganesan, Ph.D.. Chapter Objectives.
REMOTE ACCESS Research Data Management. On Campus There are two networks – the staff network and the student network. Staff network: Access to the shared.

REMOTE ACCESS Research Data Management. On Campus There are two networks – the staff network and the student network. Staff network: Access to the shared.
Hosted Exchange 2007. The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting. ExchangeDefender.

Hosted Exchange The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting. ExchangeDefender.

Similar presentations

Ads by Google