Set Up the Active Directory

This section assumes that the Active Directory tab is currently the active tab in the Tenant Creation page. If the Active Directory tab is not the active tab, click on the tab to make it the active tab.

Notes:

  1. You must provide all required information in the Tenant Info tab before you can open the Active Directory tab.

  2. This section assumes that all optional tabs are available.

In the Active Directory tab, enter the following information to set up the active directory for the new tenant. The Active Directory tab consists of two parts, the Parent AD Info section and the Child AD Info section.

In the Parent AD Info section (the Parent Active Directory Info section), enter or update the following information (except where indicated):

  • Administrator Domain Controller - Administrator Domain Controller information. You cannot change the information in this box.

    • Override - This check box, located beside the Administrator Domain Controller box, is currently disabled.

  • Administrator OU - Specify the organizational unit (OU) to which the administrator belongs in the format "OU=xxxxxxxxx". The "OU=" prefix is required for each entry.

  • Administrator Common Name - The administrator's common name (CN) in the format "CN=xxxxxxxxx." You cannot change the information in this box.

    • Override - This check box, located beside the Administrator Common Name box, is currently disabled.

  • Administrator User Password - Enter the administrator's password. As with most passwords, this password is hidden.

    • Override - This check box, located beside the Administrator User Password box, is currently disabled.

  • Test LDAP button - You can click on this button to test your LDAP connection.

Note: You cannot test the LDAP connection until after providing all required information both in the Parent AD Info pane and in the Child AD Info pane and after clicking on the Save button. Testing the LDAP connection before providing and saving all information will result in a test failure.

In the Child AD Info section (the Child Active Directory Info section) most of the boxes contain default information. You can enter or update the following information:

  • IP Address - Required. If appropriate, you can enter an IP address that identifies the active directory.

  • SSL/TLS Listen Port Number - Required. The default port number in this box is "636". You can accept the default value or you can specify a different port number.

  • Backup IP Address- Required. Enter the IP address that identifies the active directory's backup location.

  • Backup SSL/TLS Listen Port Number - Required. The default port number in this box is "636". You can accept the default value or you can specify a different port number.

  • Domain - Required. Enter the name of the domain where the active directory is located.

  • icApps Default Security Group Name - Required. Enter the default Security Group name in the format: "CN=xxxxxxx,OU=xxxxxxxx,DC=xxx,DC=xxx,DC=xxx". The "CN=", "OU=", and "DC=" prefixes are required. Entries must be separated using a comma (,).

  • User DC - Required. Specify the domain controller (DC) to which the user belongs in the format: "DC=xxx,DC=xxx,DC=xxx". The "DC=" prefix is required. Separate multiple entries using a comma (,).

  • User OU - Specify the organizational unit (OU) to which the user belongs in the format: "OU=xxxxxxxx". The "OU=" prefix is required.

  • User Common Name - Specify the user's common name (CN) in the format: "CN=xxxxxxxx". The "CN=" prefix is required.

When you have finished adding information in the Active Directory tab to identify the active directory for the new tenant, perform the following actions:

  • Click on the Save button to save active directory information. The "Information Saved" message is displayed and automatically disappears after a few seconds.

    Important: After saving the information in the Active Directory tab by clicking on the Save button, you should consider testing your LDAP (Lightweight Directory Access Protocol) connection. To test the connection, click on the Test LDAP button. If your connection is working, the "Not Tested" text changes to "Connected"; if your connection is not working, the "Not Tested" text changes to "Not Connected".

  • Continue to set up the tenant by clicking on the Owner tab to make it the active tab.

  • Jump to Assigning Tenant Owners.