HomeManagement Center

Active Directory Edition

Overview

With Active Directory Edition (ADEdition), you get a number of flows for performing delegated administration and a number of security reports for your Active Directory. These can be used as is or as inspiration for creating your own flows.

Prerequisite

  • Latest version of FortifiedID Forms

  • SAML IdP. (for example Fortified ID Access). You need a user whose SAML assertion contains property roles=ad_edition.

  • Windows server

    • A server certificate so LDAPS is supported for Active Directory

    • At least 16 GB of RAM

  • Active Directory (e.g. installed in the same machine)

    • A number of groups created with some users added

    • Have some of the user being manager for others.

    • Make sure all of them a mail attribute populated with an mail address.

    • A number of user created.

  • Note. All configuration and testing is done on the scenario server.

Configuration

Download and add ADEdition

  1. Download ZIP containing ADEdition

    1. Contact Fortified ID for ADEdition.zip file

    2. Unzip the file

  2. Add ADEdition flows to Fortified ID Forms

    1. Go to drive:\path\FortifiedID\mgmt-center\data\customer\forms\config\modules\flows

  3. Drop all flows folders in folder /Forms in the zip-file to path above.

Update globals to match your Active Directory

All flows in ADEdtion uses globals so it should be easy to map all flows to your Active Directory environment. Change values below to map your environment.

  1. Browse to Management Center for Forms

  2. Click Configuration tab

  3. Expand Misc settings

  4. Click Globals

  5. Add the following keys, se example below. Note. The different paths below are just examples, if you like you create the same structure in your environment or just change to whatever you have.

      "ad_edition_name": "ad1",
  "ad_edition_host": "127.0.0.1",
  "ad_edition_port": 636,
  "ad_edition_use_ssl": true,
  "ad_edition_ssl_trust_all": true,
  "ad_edition_base_dn": "dc=company,dc=local",
  "ad_edition_bind_dn": "CN=admin,CN=Users,DC=company,DC=local",
  "ad_edition_bind_password": "your_admin_password",
  "ad_edition_flows_add_user_dn": ",OU=user_external,OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_search_user_dn": "OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_search_external_user_dn": "OU=user_external,OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_search_internal_user_dn": "OU=users_internal,OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_self_reg_dn": ",OU=0_self_registered,OU=user_external,OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_external_users": ",OU=user_external,OU=Product_Testing,DC=company,DC=local",
  "ad_edition_flows_attributte_to_store_dateofbirth": "employeeID",
  "ad_edition_flows_attributte_to_store_eid_authN_method": "employeeNumber"

  6. Click Update

Deploy settings to Forms

  1. Click settings button top right corner in Management Center.

  2. Click Deploy

  3. Changes will be saved and service restarted.

Test ADEdition

Using only Forms

  1. In Management Center for Forms -> Configuration -> Flows you can see all flows for ADEdtion. If you click one of the flows on your right side you can se the name of the different flows. for example "name": "ad_edition_group_create"

  2. Go to a browser and paste that name to the end of the URL to forms, for example: https://localhost:8450/forms/ad_edition_group_create

Publish the links in Fortified ID Portal

  1. In the zip file, open folder zip-file\ADEdition\Portal\application_cards

  2. Add ADEdition app cards to Fortified ID Portal

  3. Go to drive:\path\FortifiedID\mgmt-center\data\customer\portal\config\modules\portal_apps\application_cards

  4. Drop all files in the zip-file to path above.

  5. Restart Fortified ID Portal service

PreviousPortalNextSoftware token (OATH)

Last updated