Secure Mobile Access 12.4 Administration Guide

Configure AD Forest Authentication Server

Configure the AD forest authentication server and enable AD domains from the current AD forest and trusted forests:

  1. In the AMC, navigate to System Configuration > Authentication Servers.

  2. Click New in the Authentication servers section.

  3. In the User Store section of the Add Authentication Server page, select Microsoft Active Directory (Advanced).

  4. Select any other applicable options and click Continue to advance to the Configure Authentication Server page.

  5. In the Name field, type the name that will be used to identify the Active Directory tree or forest.

  6. In the Root Domain field, type the AD root domain of the forest.

  7. Check the Enable cross-forest trust checkbox to enable appliance access to other trusted forests. If not enabled, the appliance can access only the forest in a direct trust relationship with the configured forest.

  8. In the Login name and Password fields, type the user name and password for a user who has read access to the entire Forest.

  9. In the Active Directory DNS section, configure the DNS and Key Distribution Centers (KDCs) correctly.

    • Select Use DNS to lookup Active Directory domains to enable DNS lookups for a KDC/Kerberos realm, and then select the domains that will be displayed on WorkPlace. Only domains fetched from the configured forest are listed when Enable cross-forest trust is disabled (checkbox not checked).
    • Select Use these Active Directory domains and KDCs to also use KDCs and then click Newand configure the KDCs.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.