Skip to Content
0
Former Member
Feb 16, 2008 at 09:45 AM

Portal - LDAP Connectivity

81 Views

Hi SDN,

We have integrated Portal (EP6 SPS16) with Active Directory as a User Persistence and are using Form-based authentication. It works fine for many users, but some are unable to authenticate.

We have found a solution, but it is not very elegant and it also violates the customer's security policy.

Solution: In Active Directory, in the property dialog for a specific user, under the Account Tab, there is a button "Log On To..." where one specifies what computers one may log on to. For most users, only their PC (by computer name) is added to the list of allowed computers, in which case they are unable to authenticate and login to Portal.

If we take somewhat radical approach and allow the same user to access "All Computers", authentication will work, but we'll violate the security policy of the customer.

We tried adding only the portal computer name to the list of allowed computers, but that didn't solve the problem.

I imagine this should be a common problem and also that there are certain AD prerequisite settings for it to authenticate for Portal, but cannot find any.

Thank you.

Regards,

Ganesh N