Presentation is loading. Please wait.

Presentation is loading. Please wait.

How To Setup LDAP Authentication for SiteScope Users

Published byGiles Chapman Modified over 5 years ago

Similar presentations

Presentation on theme: "How To Setup LDAP Authentication for SiteScope Users"— Presentation transcript:

1 How To Setup LDAP Authentication for SiteScope Users
Joe Berant Senior Technical Consultant August 23, 2013

2 Disclaimer: This is an informal technical discussion created by HP support engineers.  If you have any questions, please be sure to call HP support pursuant to an active HP support contract. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Created September 2013

3 How To Setup LDAP Authentication for SiteScope Users
Introduction: Introduction: In these next slides you will see how to set up and configure LDAP authentication for SiteScope. This presentation will show you how to leverage your existing LDAP or Active Directory server to authenticate requests to access the SiteScope application. The benefits of doing this is that it will allow you to use an existing Active Directory or LDAP server to handle authentication requests instead of manually having to create new accounts within SiteScope. It also allows you more security and auditing for authenticating users.

4 How To Setup LDAP Authentication for SiteScope Users
The first step in setting LDAP authentication up if you have not already done so already create a username and password for the built in SiteScope administrators account under Preferences --> User Management Preferences. You will need to log off and log back into the SiteScope UI once this is done. This is a requirement and you will be prompted to create a login and password if this steps is missed.

5 How To Setup LDAP Authentication for SiteScope Users
On the same screen under User Management Preferences where you enabled authentication for the built in SiteScope administrator account go to "Default Settings“ button at the top of the page and click on the edit selection.

6 How To Setup LDAP Authentication for SiteScope Users
On the LDAP user Management Settings page that will pop up select the "Enable LDAP Authentication" check box and fill out the fields for "LDAP Server URL", "LDAP Credentials" and "LDAP Context“ Note: LDAP authentication is in addition to the local users that may have been created in SiteScope. By enabling LDAP authentication you do not turn off local SiteScope authentication. So if you wanted to have only LDAP users able to authenticate to SiteScope you would remove all local SiteScope accounts except for the built in administrator account which is required.

7 How To Setup LDAP Authentication for SiteScope Users
After you have filled out the information for the “LDAP User Management Settings” expand the “LDAP User Management Advanced Settings” and fill out the LDAP user objectClass, LDAP user identical attribute and LDAP group objectClass. The defaults that work for most customers is user, sAMAccountName and group in that order.

8 How To Setup LDAP Authentication for SiteScope Users
If you have trouble filling out the LDAP User Management Settings there are some tools that can help out. You can use a third party tool like Softerra's LDAP browser that will allow you to get the available Base Distinguished Name or base DN for your LDAP server. This will assist you with filling out the correct information in the SiteScope fields.

9 How To Setup LDAP Authentication for SiteScope Users
In addition to showing you the correct base DN to put into the LDAP Context field and validating your connection information that you are providing. You can also use the Softerra LDAP Browser to check and make sure that the user or group that you are trying to allow access for LDAP authentication is under the base DN that you have selected.

10 How To Setup LDAP Authentication for SiteScope Users
Once you have filled out all of the fields under the "LDAP User Management Settings" sections select "OK" and then click on the "Default Settings" again but this time select the "Test" option. This will test out the connection to the LDAP server and the information you have entered.

11 How To Setup LDAP Authentication for SiteScope Users
The test will also tell you how many users are seen by SiteScope based off of the base DN in the LDAP context you had provided.

12 How To Setup LDAP Authentication for SiteScope Users
You can also see what specific users are allowed access to authenticate to SiteScope by going back to the “default settings” and click on the "Save allowed LDAP users to CSV" and specify an excel spread sheet to export the allowed users to a file to make sure that the people you want to have access are listed.

13 How To Setup LDAP Authentication for SiteScope Users
You will see that currently with the information that we have provided to SiteScope no users were saved to the CSV file and currently no one has access to authenticate to SiteScope via LDAP. This is because we have not specified who or what groups are allowed to login yet. This is done by creating User Roles.

14 How To Setup LDAP Authentication for SiteScope Users
To define a user role you will need to go back to Preferences--> User Management Preferences and click on New User Role. You need to specify a group that exists within your LDAP server. In this slide we are going to allow users from the Administrators group within LDAP to authenticate to SiteScope. Click "OK" once you are done. You need to specify the name of the group you are allowing as it is seen in your LDAP server.

15 How To Setup LDAP Authentication for SiteScope Users
Now that we have created the User Role allowing the Administrators group in LDAP to authenticate to SiteScope we can go back to the User Management settings and click on “Default settings” and then "Save allowed LDAP users to CSV". You will see in our CSV file that the users from that Administrators User Role that was defined are allowed to authenticate.

16 How To Setup LDAP Authentication for SiteScope Users
You can now log off from SiteScope and try to log into the SiteScope UI as a user from your LDAP server in the Administrators group shown in the CSV file.

17 How To Setup LDAP Authentication for SiteScope Users
If the logon attempt to SiteScope fails with the LDAP account you are providing a good first trouble shooting step would be to log back into the SiteScope UI using the built-in Administrator account and create an LDAP monitor with the account information you tried to log onto the SiteScope UI with and make sure that it is successful. This will validate the username and password and can sometimes give helpful information as to what is going on if the monitor fails.

18 How To Setup LDAP Authentication for SiteScope Users
You can also turn on debug for LDAP authentication by going to the /SiteScope/conf/core/Tools/log4j/PlainJava/ and open the log4j.properties.debug and find the “Authentication (LDAP/Security) section of the debug file and copy the highlighted section in the slide and paste it into the end of the log4j.properties files and save. You should not need to restart the SiteScope service, just log off and try to log back on as the user you were having problems with. Once the logon attempt fails open the /SiteScope/logs folder and look for the authentication.log. This should have the failed attempt and give some more information as to why the attempt had failed.

19 Thank you

Download ppt "How To Setup LDAP Authentication for SiteScope Users"

Similar presentations

SkillCheck Online Testing

SkillCheck Online Testing
Managing Your Organisation’s Portal Team Account Tutorial 7.

Managing Your Organisation’s Portal Team Account Tutorial 7.
HP Support Agreement Manager Tools Support Contract Assistant (SCA) Quick Reference Guide September 2006.

HP Support Agreement Manager Tools Support Contract Assistant (SCA) Quick Reference Guide September 2006.
101 Complete Moodle Tutorial. Logging In Navigate to Your login name will.

101 Complete Moodle Tutorial. Logging In Navigate to Your login name will.
Web Filtering. ExchangeDefender Web Filtering provides policy-controlled protection from dangerous content on the web. Web Filtering is agent based, allowing.

Web Filtering. ExchangeDefender Web Filtering provides policy-controlled protection from dangerous content on the web. Web Filtering is agent based, allowing.
Online Clock In/Out Employee User Guide

Online Clock In/Out Employee User Guide
Lesson 17: Configuring Security Policies

Lesson 17: Configuring Security Policies
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
HP Asset Hub Support through Service Central

HP Asset Hub Support through Service Central
Edit the text with your own short phrases. The animation is already done for you; just copy and paste the slide into your existing presentation. RegisterLogin.

Edit the text with your own short phrases. The animation is already done for you; just copy and paste the slide into your existing presentation. RegisterLogin.
Setting up Email in Outlook Express. Select “Tools” from the toolbar menu.

Setting up in Outlook Express. Select “Tools” from the toolbar menu.
Deployment Management The following screens demonstrate how to: 1. Access and view deployments 2. Create a new local deployment 3. Create and modify a.

Deployment Management The following screens demonstrate how to: 1. Access and view deployments 2. Create a new local deployment 3. Create and modify a.
Leading at Every Turn. 1)Make sure you have your Trusted Sites configured properly in Internet Explorer 2)Store your credentials on your PC so you.

Leading at Every Turn. 1)Make sure you have your Trusted Sites configured properly in Internet Explorer 2)Store your credentials on your PC so you.
Hosted Exchange 2007. The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting. ExchangeDefender.

Hosted Exchange The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting. ExchangeDefender.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Introduction: This VCSS training session has been developed to provide : I.A quick overview of VCSS II.A walk through of the main VCSS features III.Solutions.

Introduction: This VCSS training session has been developed to provide : I.A quick overview of VCSS II.A walk through of the main VCSS features III.Solutions.
Role of Account Management at ERCOT Market Participant Identity Management Overview (MPIM)

Role of Account Management at ERCOT Market Participant Identity Management Overview (MPIM)
Using the “Setup Assistant” to configure your new Mac Personalizing your new Mac.

Using the “Setup Assistant” to configure your new Mac Personalizing your new Mac.
Back to content Final Presentation Mr. Phay Sok Thea, class “2B”, group 3, Networking Topic: Mail Client “Outlook Express” *At the end of the presentation.

Back to content Final Presentation Mr. Phay Sok Thea, class “2B”, group 3, Networking Topic: Mail Client “Outlook Express” *At the end of the presentation.
First, open Microsoft Outlook How To Configure Microsoft Outllook For Your Webspace Account.

First, open Microsoft Outlook How To Configure Microsoft Outllook For Your Webspace Account.

Similar presentations

Ads by Google