Welcome back!
In the last section of this guide we covered the certificates necessary, users and permissions as well as the firewall setup.
For this section we will focus on connecting the AirID VIRTUAL service to your Domain Controller
therefore it is necessary that you got all the steps from "1 Before you start" completed.
In a quick recap this means
- An installed Domain Controller certificate for your Domain Controller
- LDAPS on your Domain Controller up and Running as well as the exported Public Part of the LDAPS certificate
- Our Issuing Certificate Installed on your Domain Controller
- a read-only user in your Active Directory
- the Active Directory groups "AVS-Admin" and "AVS-User" set up
- A port forward or NAT for the connection ready
Uploading the LDAPS Certificate
Previously we created and exported the LDAPS certificate on your Domain Controller using our Domain Controller Server Diagnostics Tool.
This Time we need the exported part of the LDAPS certificate, also called the public certificate, for the AirID VIRTUAL service connection setup.
To ensure the SSL connection to your Domain Controller.
If you want to re-visit the part of the last section follow this link <add link>
Now that you got the public certificate of your LDAPS certificate ready, we need to upload the certificate using the "Upload" button presented on your Screen.
After the successful upload of the LDAPS public certificate file, the Serial Number as well as the end date of the certificate will appear.
Connection Information
Now that everything has been lined up we set up our connection between the portal and your domain controller with the previously mentioned port forward settings
Please note that all these settings can later be changed in the Admin Portal
Now we need connection information to securely connect to your AD I'll describe below which Information are actually needed.
Domain | Fill in your Domain name e.g. "companyname.local" |
---|---|
URL | The URL references the address where we can reach your Domain Controller. To be more specific the point which you configured in your firewall in the previous part "1 Before you start" Example: ldaps://ip.ad.dr.es |
Port | The Port you configured for this connection in the previous part "1 Before you start" Example: Port: 8636 |
User / Password | The readonly user an you prepared in the previous part "1 Before you start" |
Password | The Password you set for this specific ad user |
Root DN | Now this section might need some elaboration, lets say your domain is company.org then the basic root dn would be
However if you want to limit the userbase you can further narrow this down by adding the specific OU's
please note that the specific order of the domains forrest needs to be adressed here. |
Now that we have all the details filled out, we should check if everything is set up properly and ready to use.
before continuing with the next Step, inviting the admins, we should use this funktion to check if everything is set up properly.