Prerequisite:
Create the following global security groups in AD |
|
1) Log on to the Tempered Conductor Dashboard as Admin and click on the cogwheel on the top right-hand side to take you into settings. |
|
2) Scroll down to Authentication (on the right) and click on Add Providers
|
|
3) You will be asked to enter your admin credentials again. |
|
Under 'Add Authenticator Provider' Select LDAP |
|
Click Next.
Authentication Provider settings: (* your own settings) | Attribute | Value |
|---|
| Host* | IP address of DualShield Server | | Port* | 389/686 | | Bind DN | cn=dualshield,dc=deepnetsecurity,dc=com | | Password | password | | Connection method* | Plain/SSL/TLS |
|
|
Test connection.
Click Next.
Authenticator Provider settings: | Attribute | Value |
|---|
| Base search DN | dc=deepnetsecurity,dc=com | | User UID Attribute | sAMAccountName (default) |
|
|
Type in an LDAP username and Test LDAP Search.
Click Next.
Authentication> Applications |
|
Click on 
on the top right.
In the new Application window, please enter the following information: | Option | Value |
|---|
| Name: | Enter a friendly name | | Realm: | Select your Realm | | Logon Procedure: | Select the Logon Procedure you had created in the previous step |
Click: Save |
|
Bind the Application to an SSO Server Agent
Select the drop down menu corresponding to the Application you will be using and click on Agents. |
|
Tick the box of the SSO Server you will be using and click Save below. |
|
