Connect to Active Directory

In this section, we are going to integrate Active Directory to vIDM. Once the integration is completed, we will login to the End User Catalog using a directory account.

Add Active Directory over LDAP/IWA

In the vIDM console,

  1. Click on Identity & Access Management
  2. Click on Add Directory
  3. Select Add Active Directory Over LDAP/IWA

Directory Connection Details

  1. Enter the Directory a friendly name Corp
  2. Select your installed connector from the Sync Connector drop down connector-01.corp.local

Directory Connection Details

  1. Scroll down until you the option Bind User Details
  2. Enter Base DN as dc=corp, dc=local
  3. Enter Bind DN as cn=ima service, cn=users, dc=corp, dc=local
  4. Enter Bind DN Password as VMware1!
  5. Click Test Connection
  6. Validate that you see the message Connection is successful
  7. Click Save & Next

Select the Domains

  1. You should see the corp.local (CORP) domain selected by default
  2. Click Next

Map User Attributes

For this lab we won't be modifying the default mapped attributes as they match with the lab Active Directory configuration

Click Next

Select the Groups You Want To Sync

Here we can choose which security groups from Active Directory to sync into vIDM

  1. Click on the + to add a new line entry
  2. Enter DC=corp, DC=local in the Group DN
  3. Click Find Groups

Select the Groups You Want To Sync

Click on Select in front of the group number search result 0 of 48

Search AD Groups

For this lab we will add two AD groups

  1. Enter Domain in the search field.
  2. Scroll down if necessary.
  3. Select Domain Admins from the search results
  4. Select Domain Users from the search results
  5. Click Save

Confirm Group Selection

  1. Scroll down until you the section for Group DN.
  2. You should now see the two groups you selected listed in this screen - Domain Admins, Domain Users
  3. Click Next

Select the Users You Would Like to Sync

In this screen you can specify different Organization Units (OUs) from which to sync users from. For this lab we will be simply adding users from the entire domain structure:

  1. Click + to add a new line entry
  2. Enter CN=Users,DC=corp,DC=local to sync all the users in the Users OG.
  3. Click Next

Review Results and Sync

Review the sync preview results. Note that vIDM will only sync accounts which have all the default required attributes.

Click Sync Directory

Confirm Directory Sync

You may need to refresh the page to see the results.

Once the directory sync is completed, you should see a green check mark and one synced user.

Open an Incongito Window in Chrome

  1. On the top right corner, select the option to launch Chrome Settings.
  2. Click on New incognito window

Login as End User

  1. In the incognito window, navigate to your vIDM console https://corp.airwlab.com
  2. Select corp.local from the domain drop down
  3. Click Next

Login as End User

The default setup redirects the end user to the connector URL https://connector-01.airwlab.com for authentication. We will be leveraging this connector to authenticate with the AD

  1. Enter domain account imauser
  2. Enter account password: VMware1!
  3. Click Sign In

End User Catalog

  1. You should now be logged into the Workspace One catalog view as the domain account.
  2. Click X to close the incognite window.

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.