LESSON

AD Internal Hybrid

Description

Let's add an additional authentication profile to fetch the user list from Active Directory, but this time we'll store all role information internally in Ignition. This authentication profile stores users, roles, and mappings in Ignition similar to the Internal Authentication profile, but validates against passwords stored in Active Directory.

Video recorded using: Ignition 7.9

Transcript

(open in window)

[00:00] The active directory internal hybrid user source provides security by authenticating through active director, yet still gives the flexibility of storing the user information internally in Ignition. Let's take a look at how we might set up an active directory internal hybrid user source. We need to start out on the configure section of the gateway webpage by going to the users and roles page. Here, we can see a list of all of our current user sources, and we need to click on the link create new user source. We can then select the AD internal hybrid option and scroll all the way down and hit the next button. Now we can configure out user source. First, we can set some basic properties, like a name for our user source, as well as a failover source. These properties work the same as they do in other user sources. Next, we need to configure our active directory properties. These properties work in much the same way that the properties of the pure active directory and active directory database hybrid user sources work. You simply need to fill out the information pertaining to your active directory system. Once we have all that information filled in, we can then scroll down to the bottom and click the create new user source button. Unlike the active directory database hybrid user source, we don't need to fill in any database information here. This is because instead of storing user information in a database, it's going to be stored internally within Ignition.

You are editing this transcript.

Make any corrections to improve this transcript. We'll review any changes before posting them.