Follow

Multi Domain Active Directory Support ESMv6.6.x

Back up ESM\web.config and ESM\Admin\web.config

Open ESM\web.config and ESM\Admin\web.config

Look for <connectionStrings></connectionStrings> section

Add a connection string for each active directory with a unique name

Ex.

<connectionStrings>
    <add name="ADConnectionString" connectionString="LDAP://administration.springfield.com"/>
    <add name="ADConnectionString1" connectionString="LDAP://traffic.springfield.com"/>
    <add name="ADConnectionString2" connectionString="LDAP://police.springfield.com"/>
    <add name="ADConnectionString3" connectionString="LDAP://fire.springfield.com"/>
</connectionStrings>

Look for the <membership></membership> section

Change defaultProvider to CustomADMembershipProvider

Change the CustomADMembershipProvider type to ipConfigure.Web.Security.ActiveDirectoryMembershipProvider

Add a different provider for each of the Active Directory domains

Ex.

<membership defaultProvider="CustomADMembershipProvider">
    <providers>
        <clear />
        <add name="CustomADMembershipProvider" type="ipConfigure.Web.Security.ActiveDirectoryMembershipProvider" connectionStringName="ADConnectionString" />
        <add name="traffic.springfield.com" type="System.Web.Security.ActiveDirectoryMembershipProvider" connectionStringName="ADConnectionString1" />
        <add name="police.springfield.com" type="System.Web.Security.ActiveDirectoryMembershipProvider" connectionStringName="ADConnectionString2" />
        <add name="fire.springfield.com" type="System.Web.Security.ActiveDirectoryMembershipProvider" connectionStringName="ADConnectionString3" />
    </providers>
</membership>

To verify:

  • There should be one connectionString item for each Active Directory domain
  • The membership defaultProvider should be set to CustomADMembershipProvider
  • There should be one provider named CustomADMembershipProvider with a type of ipConfigure.Web.Security.ActiveDirectoryMembershipProvider
  • For each domain there should be a provider with a unique name, a type of System.Web.Security.ActiveDirectoryMembershipProvider and a connectionStringName that corresponds to an entry in <connectionStrings />

Save each of the web config files. Restart IIS.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk