Submit a ticketCall us

Systems Monitoring for Dummies
Our new eBook will teach you the fundamentals and help you create monitors and alerts that are effective, meaningful, and actionable. Monitoring is more than a checkbox on your to-do list. This free eBook will give you practical advice to help you succeed in all aspects of monitoring – discovery, alerting, remediation, and troubleshooting. Don’t miss out on this indispensable resource for newbies, experienced IT pros, and everyone in between. Register Now.

Home > Success Center > Orion Platform > Orion Documentation > Orion Platform Administrator Guide > Manage Orion Web Console user accounts > Supported Active Directory scenarios

Supported Active Directory scenarios

Table of contents
Created by Caroline Juszczak, last modified by Magdalena.Markova on Nov 28, 2016

Views: 79 Votes: 0 Revisions: 5

The following Active Directory login scenarios are supported for SolarWinds products using the latest version of the Orion Platform.

Scenario Web Console
Login Supported?
Local Login Required? Network Atlas and
Unmanage Utility Login Supported?
Login with "Orion Server" domain AD account Yes

No

LogonFallback must be enabled.

Yes
Login with "Orion Server" domain Group AD account
Login with trusted domain AD user No
Login with trusted domain AD Group User
Login with "Orion Server" domain Group AD account (group user belongs to trusted domain)1
Login with trusted domain Group AD account (group user belongs to "Orion Server" domain)2 No N/A
Login with AD user or Group user from a foreign AD forest

Yes, when LDAP is enabled

No, without an Additional Website3

  1. Use a group account from the domain where the Orion Platform product server is located. This group contains a user from the trusted domain. Log in with this user.
  2. Use a group account from the domain where the Orion Platform product server is located. This domain is trusted by the domain in which the Orion server is located. This group contains a user from the domain of the Orion server. Log in with this user.
  3. Active Directory authentication is performed by the web service. If you need to authenticate users from an AD forest other the one to which your primary SolarWinds server belongs, you must have an Additional Web Server in the AD forest wherein the users to be authenticated exist.

Enable LogonFallback

LogonFallback must be enabled when the Active Directory user of the Orion Web Console does not have local login rights to the web server.

  1. Locate the file web.config on the server hosting your Orion Web Console.
    The default location is c:\inetpub\SolarWinds\.
  2. Create a backup of web.config.
  3. Locate row <add key="LogonFallback" value="false" />.
  4. Set value="true".
  5. Save web.config.
  6. Restart your SolarWinds website in Internet Information Services Manager.
 
Last modified

Tags

Classifications

Public