The domain is used to authenticate the user. This is the most secure, flexible and simple to manage. No need to synchronize users between the domain and Devolutions Server. With the Automatic user creation on first login option enabled, upon using Devolutions Server data source for the first time, a user is created and given access rights according to their assigned role on the domain.
Simply grant the appropriate permissions for your user groups in Devolutions Server, and Devolutions Server will automatically sync permissions if the user group matches the domain group to which the users belong.
Domain configuration is located in Administration – Server settings – Authentication – Domain in the web interface of Devolutions Server.
| Option | Description |
|---|---|
| Domain | Specify the remote computer domain name. |
| Display name | Enter the domain name to be displayed in various locations in the application, e.g., in informational messages. Specify the Active Directory Organizational Unit (OU) or Group to restrict the search in a specific area in the Active Directory structure. The format must be the distinguished name (CN=Users,DC=windjammer,DC=loc). |
| Administration credentials | Add the credentials of a domain or service account to access the Active Directory forest and obtain user account information through LDAP queries. This account needs to be able to retrieve user account information and group memberships. It may requires higher privileges than being part of the Domain Users built-in Active Directory group, although it should be sufficient in most cases. |
| Option | Description |
|---|---|
| Enable LDAPS |
|
| Option | Description |
|---|---|
| Auto-create on first login | Automatically create the domain user account in the Devolutions Server on the first login attempt. |
| Only from this group | Automatically create the user only if he is a member of this AD group. |
| Username format | Select the username format that will be created in the database.
|
Share your feedback