Skip to main content
Version: 2.10.1

Active Directory Authentication

Procedure

  1. Select Active directory authentication check box

  2. Click on Add AD Server button

  1. Specify Domain Name
  2. Specify User Group or Groups
  3. Select “Use DNS” or “Configure AS Server manually”
  4. Check “Use SSL” if needed
  5. If “Configure AS Server manually” is selected, specify AD host name or IP address
  6. Specify AD port
  7. Press ‘Save’ button to save your settings
info

The following steps are required if SSL is enabled:

  1. Import AD certificate or root CA into Java Runtime trusted keystore. Keystore has default password changeit.
   /opt/flowintegrator/java/jre/bin/keytool -import -trustcacerts -alias ADName -file AD.crt -keystore /opt/flowintegrator/java/jre/lib/security/cacerts -storepass changeit

Where ADName and AD.crt are certificate name and file name respectively.

  1. Restart NFO Tomcat if certificate has been imported.

Restart NFO Tomcat (see Working with NFO Service)

note

For troubleshooting please check error messages in NFO GUI and/or log file logs/nf2sl.log. Logs trace level can be changed in this file /opt/flowintegrator/tomcat/webapps/ROOT/WEB-INF/classes/log4j2.xml. Uncomment the following line:

<Logger name="com.netflowlogic.nf2sl.service.security" level="trace"/>

Restart NFO Tomcat after changing trace level. Login again using AD user.