Question

Multiple AD controllers

Administration Laserfiche How To Directory Server Presales

Updated July 23, 2019

asked on July 22, 2019

Hi,

A prospect has a number of different departments/locations and each location and department has its own AD and is not on the same network. They would like a centrally located LF Repository but would need to authenticate users from these different AD environments against the Repository. Is this possible?

Thanks

Anthony

0 0

Answer

SELECTED ANSWER

replied on July 22, 2019 • Show version history

Hi Anthony,

Assuming you're using LFDS, then yes this is very easy, even without trusts.

The LFDS server must be running on a member server. It doesn't matter for which domain.
Set up an Identity Provider for each domain.

If you're not using LFDS, then Chris is right, trusts will be required. However, Kerberos is a pain to setup, especially if those trusts are one-way. NTLM will work for sure but relying on NTLM means no auto-login.

Regards,

Ben

2 0

Replies

replied on July 22, 2019

Hi Anthony,

Assuming the AD controllers can see each other (they are on the same WAN) and you have the relevant domain trusts in place, yes this is perfecty feasible.

Cheers!

1 0

replied on July 22, 2019

Thanks Chris.

We are in NHS/CCG territory here, so need to look into how things are setup.

Anthony

0 0

SELECTED ANSWER

replied on July 22, 2019 • Show version history

Hi Anthony,

Assuming you're using LFDS, then yes this is very easy, even without trusts.

The LFDS server must be running on a member server. It doesn't matter for which domain.
Set up an Identity Provider for each domain.

Regards,

Ben

2 0

replied on July 23, 2019

Thanks guys for the replies. I'll do some research and get back to them.

0 0

You are not allowed to follow up in this post.

Question

Question

Multiple AD controllers

Answer

Replies

Sign in to reply to this post.