Configure the AD forest authentication server and enable AD domains from the current AD forest and trusted
In the AMC, navigate to System Configuration > Authentication Servers.
Click New in the Authentication servers section.
In the User Store section of the Add Authentication Server page, select Microsoft Active Directory
Select any other applicable options and click Continue to advance to the Configure Authentication Server page.
In the Name field, type the name that will be used to identify the Active Directory tree or forest.
In the Root Domain field, type the AD root domain of the forest.
Check the Enable cross-forest trust checkbox to enable appliance access to other trusted forests. If not enabled, the appliance can access only the forest in a direct trust relationship with the configured forest.
In the Login name and Password fields, type the user name and password for a user who has read access to the entire Forest.
In the Active Directory DNS section, configure the DNS and Key Distribution Centers (KDCs) correctly.
- Select Use DNS to lookup Active Directory domains to enable DNS lookups for a KDC/Kerberos
realm, and then select the domains that will be displayed on WorkPlace. Only domains fetched
from the configured forest are listed when Enable cross-forest trust is disabled (checkbox not
- Select Use these Active Directory domains and KDCs to also use KDCs and then click Newand
configure the KDCs.