AD Integration set up
1. Setup the AD Integration web service
1.1 Open the IIS Manager and click “Add new website”. For the “Physical path” select the folder
with the web service source files:
1.2 Click Bindings and fill the information as shown below:
1.3 Edit the web service web.config file settings:
Add your domain, user name and password for the user that has permissions to query you
Active Directory. If you want to secure the data that is transferred from AD to DW you could
specify the “SecurityToken” string, that will be used for encrypt/decrypt data.
In the “GroupsToSkip” filed you could enumerate by “,” the groups that you don’t want to
get the users from.
<appSettings>
<add key="Domain" value="dynamic-systems.lan" />
<add key="UserName" value="[email protected]" />
<add key="Password" value="" />
<add key="SecurityToken" value="" />
<add key="GroupsToSkip" value=" " />
</appSettings>
1.4 After that you will be allowed to connect to your AD web service using the url with the
format like: http://your web site name/ADIntegartionService.asmx:
In my case it is: http://adservice.local.dynamicweb.dk/ADIntegrationService.asmx
2. DW configuration for importing data from AD
2.1 Creating Data Integration import users job:
2.1.1 Go to Modules->Data Integration and click “New activity”:
- Select “Xml” as a Source Provider and
- choose the Xml “Source File”(that will contain data exported from AD before import to DW
database) ,
- Put “Source decimal separator” to “Detect automatically”:
For the Destination choose “User provider”:
Click “Next” and enter your job name and check the “Perform mapping automatically on run”
option:
Click “OK” and save and close your job.
2.2 Configuring the Scheduled Task for importing data from AD
2.2.1 Go to Management Center->Integration->Integration Framework Batch
2.2.2 Select “Active Directory Import Data AddIn” and fill the fields as shown below:
“Web service URL” is the url to your web service ADIntegratonService.asmx file from the section
“1.4”
“Security key” option should be set to the same string that is used in the “1.2” section for the AD
service “SecurityToken” web.config option. It is used for decrypting data that is coming from AD.
“Users import activity” should be set to the Data Integration job that was created in “2.1.1”
“AD Destination group” should be set to the desired Users group where the AD groups with
users will be inserted to.
2.2.3 Click “Save and close” and you will be redirected to the scheduled tasks list from where
you can run your task for importing AD data to DW.
3. AD users external login on Dynamicweb frontend
3.1 AD External Login Provider setup
3.1.1 Go to Management Center->Control Panel->External Authentication. Click “Add” and choose
“Active Directory Login” for the “Login Provider” drop-down list and fill the field like shown below:
“Web service URL” is the url to your web service ADIntegratonService.asmx file from the section “1.4”
“Security key” option should be set to the same string that is used in the “1.2” section for the AD service
“SecurityToken” web.config option. It is used for decrypting data that is coming from AD.
3.2 AD login frontend part
3.2.1 Configure the template that is used for Dynamicweb fronted login for the AD login. You can look
for the existing sample template for reference, section “3.2.2”.
You will see the page like with login control like this:
For the AD login it is needed to enter the AD user name and password and click the
“Active Directory Login” button.
3.2.2 Sample template source code:
<!--@If(Global:Extranet.UserID==0)-->
<h3><!--@Translate(CustomerLogin, 'Customer login')--></h3>
<div class="login-box-mode" data-login-box-mode="login">
<!--@If(Global:Extranet.UserID==0)-->
<!--@If(Server:Request.username<defined> || Server:Request.password<defined>)-->
<div class="loginbox-login-failed alert alert-error">
<!--@Translate(Invalid_username_or_password, "Invalid username or password")-->
</div>
<!--@Else-->
<div class="loginbox-login-failed alert alert-error">
<!--@DW_extranet_error_uk-->
</div>
<!--@EndIf-->
<!--@EndIf-->
<form name="loginForm" class="form-horizontal" method="post" onsubmit="">
<input type="hidden" name="ID" value="<!--@Global:Page.ID-->" />
<div class="control-group">
<input type="text" id="login-username" name="username" spellcheck="false"
placeholder="<!--@Translate(Username, 'Username')-->"
value="<!--@If(Server:Request.username<defined>)--><!--@Server:Request.username--><!--@EndIf-->" />
</div>
<div class="control-group">
<input type="password" id="login-password" name="password"
placeholder="<!--@Translate(Password, 'Password')-->"
value="<!--@If(Server:Request.password<defined>)--><!--@Server:Request.password--><!--@EndIf-->" />
</div>
<input type="submit" value="Login" onclick="document" />
<!--@LoopStart(DWExtranetExternalLoginProviders)-->
<!--@HeaderStart-->
<h3><!--@Translate(External_account_log_in, "External account log in")--></h3>
<table border="0" cellpadding="5">
<tr>
<th><!--@Translate(Provider_name, "Provider name")--></th>
<th></th>
</tr>
<!--@HeaderEnd-->
<tr>
<td><!--@ProviderName--></td>
<td>
<!--@If(ProviderType=="Active Directory Login")-->
<a onclick="if (document.loginForm != null) { document.loginForm.action =
'/Admin/Public/Social/ExternalLogin.aspx?action=login&providerID=<!--@ProviderID-->'; document.loginForm.submit(); };"
style="cursor:pointer; font: normal 12px Arial; text-decoration: none; background-color: #EEEEEE; color: #333333; padding:
2px 6px 2px 6px; border: 1px solid #CCCCCC;">
<!--@ProviderType-->
</a>
<!--@Else-->
<a href="/Admin/Public/Social/ExternalLogin.aspx?action=login&providerID=<!--@ProviderID-->"
style="font: normal 12px Arial; text-decoration: none; background-color: #EEEEEE; color: #333333; padding: 2px 6px 2px 6px;
border: 1px solid #CCCCCC;">
<!--@ProviderType-->
</a>
<!--@EndIf-->
</td>
</tr>
<!--@FooterStart-->
</table>
<!--@FooterEnd-->
<!--@LoopEnd(DWExtranetExternalLoginProviders)-->
</form>
</div>
<br />
<!--@Else-->
<a class="btn" href="/Admin/Public/ExtranetLogoff.aspx?ID=<!--@DwPageID-->"><!--@Translate(Logout, 'Logout')--></a>
<!--@EndIf-->