Skyline

Adding the Domain Name

Adding the Domain Name

Previous topic Next topic  

Adding the Domain Name

Previous topic Next topic JavaScript is required for the print function  

To change the authentication method used by Skyline, you will need to edit the file web.config on the Skyline server. The file contains settings common to all the portals and in particular it contains the name of the Active Directory domain so that Skyline knows where to authenticate users. The Skyline server must have permission to pass the log in username to the domain controller for authentication. Therefore, the Skyline server needs to be given the location of the domain controller.

To amend the web.config file: connectionUsername

1.Log in to the Skyline server as a local administrator. Locate the web.config file and make a copy before you make any changes.
The web.config file is found in the root directory of Skyline (C:\Skyline\wwwroot) by default.
2.Open the web.config file in notepad. Double click the file will usually open it.
3.Locate the LDAP connection string You need to enter your domain network name.
<add name="ADServiceWindows" connectionString="LDAP://eprint.local/OU=eprint,DC=eprint,DC=local" />
4.Replace eprint.local with your own domain name. If the fully qualified domain name (FQDN) is split into several parts, then you should enter the FQDN after LDAP= followed by a separate DC= section for each part. The default port number for doing LDAP Authentication is 389 and this should be added after your domain name. If this is omitted then authentication may be slow.
For example:
<connectionStrings>
   <add name="Skyline" connectionString="data source=.\Skyline;initial catalog=Skyline;persist security info=True;user id=Skyline;password=Skyline" providerName="System.Data.SqlClient" />
   <add name="SkylineMembership" connectionString="data source=.\Skyline;initial catalog=SkylineMembership;user id=Skyline;password=Skyline;packet size=4096; Enlist=false;" providerName="System.Data.SqlClient" />
   <add name="ADServiceWindows" connectionString="LDAP://your.domainname:389/DC=your,DC=domainname" />
 </connectionStrings>
 
InfoNote: If you use secure LDAP authentication the port number used should be 636.
5.Find the section starting <membership defaultProvider="Database">. There is a line of code that instructs the Skyline server to use the connection string. If this line is commented out, the connection string is ignored. If the line is commented out it will start with the characters "<!--" and end with "-->"; these characters must be removed
<providers>
       <!-- NB. Do not change the names of these providers -->
       <clear />
       <add name="Database" connectionStringName="SkylineMembership" requiresQuestionAndAnswer="false" applicationName="/" type="Eprint.Skyline.Web.Pages.ApplicationProvider" requiresUniqueEmail="false" minRequiredPasswordLength="1" minRequiredNonalphanumericCharacters="0" passwordStrengthRegularExpression="" maxInvalidPasswordAttempts="999" />
      <!--<add name="Network" attributeMapUsername="sAMAccountName" requiresQuestionAndAnswer="false" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="ADServiceWindows"/>-->
</providers>
6.Add a user name and password of an account that has sufficient privileges to user rights to check the list of users on your domain controller.
<add name="Network" attributeMapUsername="sAMAccountName" requiresQuestionAndAnswer="false" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="ADServiceWindows" connectionUsername="username" connectionPassword="password" />
7.Save the web config file.