Enable Active Directory Authentication

Configuration Guide › Authentication Options › Enable Active Directory Authentication

Enable Active Directory Authentication

Authentication is the act of establishing that a user has sufficient security privileges to access the CA GovernanceMinder Portal. When you enable Active Directory authentication, the system authenticates users logging in to the Portal using the Active Directory directory.

Follow these steps:

In the the Portal under Administration, Settings, System Properties:
The Properties Settings window appears.
Set these properties as follows:
sage.security.disable.ADAuthentication

Set this value to False to enable Active Directory authorization.

security.ldap.server

The host_name OR active_directory_IP (example: HOSTNAME.org.com).

sage.security.credentials.expiration.seconds

Defines the lifetime of the credentials expiration, in seconds. Set this value to 60.

sage.security.eurekify.keyStore.file

Set this property when using SSL and adding the AD certificate to a JVM keystore file.

sage.security.eurekify.keystore.password

Set this property when using a JVM keystore file for SSL.

Note: Use separate instructions if you want to use a personal keystore instead of the JVM keystore.

sage.security.disable.ssl.ADAUthentication

Set this value to True to enable Active Directory authentication.

sage.default.domain
The Active_Directory_domain.

Note the following:
- You must have a Login ID filed in the database with the domain name (example: domain\jsmith)
- When logging in, the user must provide the Login ID (example: domain\jsmith). If the Active Directory domain is set as the sage.default.domain property, then domain is not required when logging in, only the Login ID (jsmith).
(Optional) security.manager.dn

The AD_bind_account (example: administrator).

Note: The DN may be required only when using SSL authentication.

(Optional) security.manager.password

The AD_bind_account_password.
You have enables Active Directory authentication.