Adding Domains
If a directory service domain is configured in FlexNet Manager for Engineering Applications, users and user groups can be imported from the directory service and assigned roles.
Users assigned a role with the View and Manage Domains permission can view, add, and edit domains.
To configure access to a directory service:
- From the Admin tab, under User , click Show Domains .
- Click Add Domain .
- On the Add Domain page, provide values for the required domain settings. Defaults may be defined based on the type of directory service. Required settings are identified by a red asterisk (
*).
| Setting | Description |
|---|---|
| Name | Name that uniquely identifies the domain. The name for the domain that contains users added manually to FlexNet Manager for Engineering Applications is FLEXnet. Additional domains that are added are directory service domains. |
| Protocol | The protocol used to access the directory service. LDAP and LDAPS protocols are supported. If LDAPS is selected, see the FlexNet Manager for Engineering Applications Installation Guide for instructions to configure secure (SSL) client settings. |
| Host | Name of the host machine on which the directory service runs. |
| Port | Port on the host machine on which the directory service listens for requests. The default ports are: LDAP port: 389 LDAPS port: 636. |
| Domain Login | The user name which is used when binding to the active directory domain to perform domain operations. |
| Domain Password | The password used when binding to the active directory domain to perform domain operations. |
| Base Distinguished Name | The location in the directory service data at which to start searching for authentication information. |
| User Search Filter | The directory service filter condition that is used to identify entries of type user. |
| Authentication Filter | The directory service filter condition that is used to identify a user during the authentication process. |
| UserId Attribute | The directory service attribute that contains the userId value. When a user is created from directory service, this attribute is used to get the userId value and stored as user name. |
| Group Name Attribute | The directory service attribute of a user that contains the groups to which that user belongs. |
| Display Name Attribute | The directory service attribute that contains the display name of a user. |
| Display Detail Attribute | The directory service attribute that contains a user’s display detail. The value of this property is displayed in the Add User page when you create a user from a directory service. If not defined, the default value is the User Distinguished Name in the directory service. |
| Organization Unit Attribute | The name of the attribute in the directory service that stores the user's organization. The value specified in the directory service for this property must be the same as that defined by the Organization Identifier in FlexNet Manager for Engineering Applications. |
| Email Attribute | The name of the attribute in the directory service that stores the user's email. If this is not defined, the user email will not be populated. |
| Locale Attribute | The name of the attribute in the directory service that stores the user’s locale. The locale ID value specified by this property in the directory service must use the format <language code> _ <country code> . For example, the locale ID en_GB is for Great Britain English, while en_US is used for United States English. |
| Time Zone Attribute | The name of the attribute in the directory service that stores the time zone defined for that user. The value specified by this property in the directory service must take one of the following formats (these are supported by Java): Time Zone ID, such as America/Dawson or America/Los_Angeles GMT standard format: GMT <+\ |
| Group Search Filter | The directory service filter condition that is used to identify entries of type group. The syntax (include parentheses) is ( attribute\_name=value ), where value is the value of the directory service attribute when the object is a group. |
| Display Name Attribute | The directory service attribute that contains the display name of a group. |
| Display Detail Attribute | The directory service attribute that contains a group’s display detail. The value of this property is displayed in the Add Group page when you create a group from a directory service. If not defined, the default value is the Group Distinguished Name in the directory service. |
| Returned Page Size | If a positive number is specified, FlexNet Manager for Engineering Applications tries to use paging when searching for directory service entries. Paging means that the directory service returns no more than the specified number of entries at a time instead of all entries in one batch. Set this value to a number less than or equal to the page size limit imposed by the directory service. Not all directory services support paging; if your directory service does not, set the page size to 0. |
| Status | An active domain can be used to import or authenticate a user; an inactive domain cannot. Leave the status of a new domain Active. |
- Click Save .
- After the new directory service domain is saved, the user needs to be added through FlexNet Manager for Engineering Applications first, and assigned a role. To enable users who are maintained in that directory service to perform tasks in FlexNet Manager for Engineering Applications, users and groups can be imported into FlexNet Manager for Engineering Applications and granted roles.
- Verify in the Domains page that the domain was added.
See Also