Submit a ticketCall us

Announcing NPM 12.2
With NPM 12.2 you can monitor your Cisco ASA firewalls, to monitor VPN tunnels for basic visibility and troubleshooting tunnels. NPM 12.2 also uses the SolarWinds Orion Installer so you can easily install and upgrade one or more Orion Platform products simultaneously.
See new features and improvements.

Home > Success Center > Orion Platform > Orion Documentation > Orion Platform Administrator Guide > Manage Orion Web Console user accounts > Supported Active Directory scenarios

Supported Active Directory scenarios

Table of contents
Created by Caroline Juszczak, last modified by Magdalena.Markova on Nov 28, 2016

Views: 54 Votes: 0 Revisions: 5

The following Active Directory login scenarios are supported for SolarWinds products using the latest version of the Orion Platform.

Scenario Web Console
Login Supported?
Local Login Required? Network Atlas and
Unmanage Utility Login Supported?
Login with "Orion Server" domain AD account Yes

No

LogonFallback must be enabled.

Yes
Login with "Orion Server" domain Group AD account
Login with trusted domain AD user No
Login with trusted domain AD Group User
Login with "Orion Server" domain Group AD account (group user belongs to trusted domain)1
Login with trusted domain Group AD account (group user belongs to "Orion Server" domain)2 No N/A
Login with AD user or Group user from a foreign AD forest

Yes, when LDAP is enabled

No, without an Additional Website3

  1. Use a group account from the domain where the Orion Platform product server is located. This group contains a user from the trusted domain. Log in with this user.
  2. Use a group account from the domain where the Orion Platform product server is located. This domain is trusted by the domain in which the Orion server is located. This group contains a user from the domain of the Orion server. Log in with this user.
  3. Active Directory authentication is performed by the web service. If you need to authenticate users from an AD forest other the one to which your primary SolarWinds server belongs, you must have an Additional Web Server in the AD forest wherein the users to be authenticated exist.

Enable LogonFallback

LogonFallback must be enabled when the Active Directory user of the Orion Web Console does not have local login rights to the web server.

  1. Locate the file web.config on the server hosting your Orion Web Console.
    The default location is c:\inetpub\SolarWinds\.
  2. Create a backup of web.config.
  3. Locate row <add key="LogonFallback" value="false" />.
  4. Set value="true".
  5. Save web.config.
  6. Restart your SolarWinds website in Internet Information Services Manager.
 
Last modified
02:41, 28 Nov 2016

Tags

Classifications

Public