Authentication
Windows
On the Windows Authentication page, you can work with your IT administrator to set up Windows authentication details, including the following:
- Server Name
- Domain Name
- Organization Unit
This information includes the LDAP details for the server with which you will connect to fetch any AD User or AD Group information required for Windows authentication. This is required for cross-forest or cross-domain scenarios where the credentials used to log in to Evolve do not provide access to the Active Directory of other domains.
You can select one of the following two options:
- Using the Application Pool Identity. For this option, check the Use Application Pool Identity checkbox. The Application Pool Identity user accesses ('connects to') the Active Directory of the provided LDAP Server. Ensure that the Application Pool Identity user has rights to access Active Directory on the LDAP server.
- Using Credentials. For this option, do not check the Use Application Pool Identity checkbox. The user provided accesses ('connects to') the Active Directory of the provided LDAP Server.
| Field | Field description |
|---|---|
| Server Name | LDAP Server |
| Use Application Pool Identity |
Option to use the application pool identity to connect to the LDAP Server. The user must have rights on the LDAP Server in order to connect. |
| Username |
The user in Active Directory who has access to the LDAP Server. This user establishes the connection to the LDAP server - in order to query Active Directory. |
| Password | Saves the password for the user specified in the Username field. |
| Domain Name | The domain name of the LDAP Server. |
| Organizational Unit | The LDAP source directories available for the integration to the LDAP Server. |
| Application Pool Identity option: complete string |
LDAP://<ServerName>,DC=<Domain>, OU=<OrganizationalUnit> This call to Active Directory is made with the Application Pool Identity. The LDAP Server string is usually in the same format as the Application Pool Identity string. |
| Credentials (Username/Password) option: complete string |
LDAP://<ServerName>,DC=<Domain>, OU=<OrganizationalUnit> This call to Active Directory is made with the username and password provided. |
Host URL
The Host URL can be changed by the Global Administrator. This is particularly useful when working with load balancing scenarios.
Keys
API keys are stored here. They are used to ensure that third-party access to Evolve systems is secure. Example: Power BI is an example of a third-party system which accesses Evolve to create custom dashboards.
In case user has SSL Offload setup and wants to update Host Details.
-
Script to update Host Details:
Update dbo.HostDetailsSet HostName = <hostNameNew>, Protocol = <protocol>
-
In case user wants to update SAML Details:
-
Update dbo.IdentityConfiguration
-
Set Value = <NewValue>
-
Where Key = <KeyToBeChanged>
-
An IIS Reset needs to be performed after making changes.