Skip to content

DataSplice Support Website

Sections
Personal tools
You are here: Home » Product Manuals DataSplice 3.0 » DataSplice Administration Client Manual » External Authentication Domains
 

External Authentication Domains

Authentication is crucial when interacting with enterprise applications. If existing domains are already in existence, it makes sense to utilize those, rather than having to recreate them. Using existing external domains for DataSplice is not only beneficial when setting up domains, but it is also very advantageous from a long-term maintenance standpoint. It is much easier to manage one domain than to manually try to keep two of them synchronized.

Important note about maintenance of external domains: Users and groups can be added and deleted in the Administration Client only for the DataSplice domain. These tasks are discussed in the following users and groups section of this manual. Other external domains, such as Active Directory, MAXIMO®, Oracle, or SQL Server require that the users and groups be added or deleted at the location of the source domain.

The ability to utilize existing domains from within DataSplice is controlled in the External Authentication Domains section of the Administration Client. To display this section, select Authentication Domain Settings from the main navigation button.

External Authentication Domains

External Authentication Domains Stored in a Database

It is possible to reference an existing external authentication domain that is stored in a database. This is useful for accessing domains within MAXIMO® 4.x, SQL Server, Oracle, etc.

To create a reference to an existing external authentication domain from a database:

  1. Select Authentication Domain Settings from the main navigation button.
  2. This brings up the External Authentication Domains section.
  3. Click Action > Create Authentication Domain.
  4. This brings up the Entry Dialog window.

    External Domain Entry Dialog

  5. In the Domain Name field, enter a name used to define this external domain.
  6. From the Authentication Source drop-down list, select the domain provider schema to use.
  7. In the Template section, select the pre-defined template that matches your desired domain type.
  8. Click OK.
  9. The external domain reference will be created in DataSplice, and additional details will be displayed to the right in the Basic Options area. Complete the fields appropriately. In general, only the Connection Profile field will need to be selected.

    Domain Listing

    Option Name Option Value
    Connection Profile This is the connection profile being used to obtain database users and groups from.
    Note: This should be the name of the connection profile as it has been configured in the Database Connection Profiles section of the ADO.NET Data Source Plug-in configuration.
    Query Database Users SQL statement used to retrieve the list of database users. The default statement assumes that the user name column is aliased to user_name and the users table is aliased to users_table.
    Query Database Groups SQL statement used to retrieve the list of database groups. The default statement assumes that the group name column is aliased to group_name and the group table is aliased to groups_table.
    Query Database User-Group Associations SQL statement used to retrieve the list of user-group associations. The default statement assumes that the user name is aliased to user_name and the group name column is aliased to group_name. It also assumes that the corresponding users table is aliased to users_table and the groups table is aliased to groups_table.

  10. Click the Save Changes button Save Changes Button .

Active Directory Domains

Existing Windows Active Directory domains can be accessed within DataSplice. This functionality is provided by the included Windows authentication plug-in.

To create a reference to an existing Active Directory domain:

  1. Select Authentication Domain Settings from the main navigation button.
  2. This brings up the External Authentication Domains section.
  3. Click Action > Create Authentication Domain.
  4. This brings up the Entry Dialog window.

    External Domain Entry Dialog

  5. In the Domain Name field, enter a name used to define this external domain.
  6. From the Authentication Source drop-down list, select Windows Authentication Plug-in.
  7. In the Template section, select Default.
  8. Click OK.
  9. The new external domain will be created, and additional details will be displayed to the right in the Basic Options area. Enter the field values appropriately.

    Active Directory Fields

    Option Name Option Value
    User Name A user of the desired Active Directory domain to be used to list the users and groups the domain contains.
    Note: For the domain setup to function correctly, this user must be a member of the intended domain and have appropriate access to the list of users and groups it contains.
    Password The associated password for the user specified in the previous field.
    AD Domain Name The drop-down list of accessible Active Directory domains. This list should be pre-populated with all visible Active Directory domains.

  10. Active Directory properties, such as email, can be assigned to DataSplice attributes. If desired, this behavior is configured in the following Directory Attributes section. Click the Add button to create a new attribute definition entry. In the Attribute Name field, enter the DataSplice attribute to be assigned. In the Property Name field, enter the Active Directory property of interest.
  11. Click the Save Changes button Save Changes Button .

MAXIMO® 5.x Domains using Integration Plug-in 2.x

Existing MAXIMO® 5.x domains can be accessed within DataSplice. If the MAXIMO® integration plug-in version 2.x is being used, the domain settings can be created in this External Authentication Domains screen. For information regarding the installation and initial configuration of the integration plug-in version 2.x, please refer to the MAXIMO® 5.x integration plug-in 2.x manual.

To create a reference to an existing MAXIMO® 5.x domain when using the integration plug-in version 2.x:

  1. Select Authentication Domain Settings from the main navigation button.
  2. This brings up the External Authentication Domains section.
  3. Click Action > Create Authentication Domain.
  4. This brings up the Entry Dialog window.

    External Domain Entry Dialog

  5. In the Domain Name field, enter a name used to define this external domain.
  6. From the Authentication Source drop-down list, select MAXIMO 5.x Integration Plug-in.
  7. In the Template section, select Default.
  8. Click OK.
  9. The new external domain will be created, and additional details will be displayed to the right in the Basic Options area. Enter the field values as desired.

    MAXIMO 5.x Domain Fields

    Option Name Option Value
    User Name A MAXIMO® user with adequate permissions to be able to list the users and groups in the system.
    Password The associated password for the user specified in the previous field.
    Host The MAXIMO® server name.
    Site The MAXIMO® site.

  10. Click the Save Changes button Save Changes Button .

MAXIMO® 5.x/6.x Domains using Integration Plug-in 4.x

Existing MAXIMO® 5.x or 6.x domains can be accessed within DataSplice. If the MAXIMO® integration plug-in version 4.x is being used, the MAXIMO® domain will be created based on the Authentication Domain Name field defined in the basic options section of the MAXIMO® integration plug-in. If this version of the integration plug-in is being used, the domain screen will be read-only. For information regarding the installation and initial configuration of the integration plug-in version 4.x, please refer to the MAXIMO® 5.x/6.x integration plug-in 4.x manual.

To display a MAXIMO® 5.x or 6.x domain when using the integration plug-in version 4.x:

  1. Select Authentication Domain Settings from the main navigation button.
  2. This brings up the External Authentication Domains section. Notice the read-only domain entry corresponding to the name given in the Authentication Domain Name field in the basic options section of the MAXIMO® integration plug-in.

MAXIMO Domain Read-only

If a previous version of the integration plug-in is being used, such as version 2.x, the domain will be created on this screen. Please refer to the previous section for additional information when configuring authentication domains when using the MAXIMO® integration plug-in version 2.x.

Other Types of Domains

Other types of external authentication domains may also be accessed. Extended functionality of this type is provided by specific plug-ins.

Contents
 


Last modified 2006-09-26 10:19 AM
 
Powered by Plone

This site conforms to the following standards: