This section describes how to configure Active Directory authentication to the Skyline Collector user interface.
Active Directory (AD) can be enabled to allow access for specific AD Users and Groups to the Skyline Collector user interface. Active Directory allows for more granular access controller to the user interface and restricts the number of individuals that might need to know the admin user account details.
To configure Active Directory (AD) authentication, follow these steps :
To enable Active Directory authentication, anonymous bind must be enabled within Active Directory. Do not enable anonymous bind only for the purpose of enabling Active Directory authentication to the Skyline Collector user interface.
- Click Configuration.
- Click Active Directory.
- Toggle the Do you want to enable Active Directory switch to Yes.
- Enter the Domain Controller IP address or fully qualified domain name.
- Enter the Port.
- Enter the Domain Name.
- Enter an Active Directory User or Group by typing in the space provided.
You do not need to provide domain details when adding a User or Group.
For example, if you wanted to add the user Support Admin (DOMAIN\supportadmin), enter supportadmin on the line provided within Allowed AD Users, and click Add User.
Active Directory (AD) Groups added to Skyline Collector are not recursive. Any AD Groups that reside within the AD Group (subgroup) that you are adding are not granted access to the user interface. Only AD Users of the specific AD Group you are adding have access to the Skyline Collector user interface.
- Click Set Active Directory Configuration.
If an Active Directory User logs into the Skyline Collector user interface, there is no option to Manage AD from the Settings page. The ability to Manage Active Directory is only available to the admin account.