Adding Domains to Automatic LDAP Targets
If the endpoint on which the ITM On-Prem (ObserveIT) Application Server is installed is a member of an Active Directory domain, that Active Directory domain will be automatically added to the list of LDAP Targets, and will be configured as an "Automatic" type LDAP Target.
If, during the ITM On-Prem (ObserveIT) installation, the endpoint on which the ITM On-Prem (ObserveIT) Application Server is installed is not a member of an Active Directory domain, the setup program will perform any changes to the LDAP Target List.
However, in cases when the ITM On-Prem (ObserveIT) Application Server is installed as a member of a domain after the ITM On-Prem (ObserveIT) installation, you can add that domain to the list of LDAP Targets.
To add a domain to the list of LDAP Targets
-
Make sure that the endpoint on which the ITM On-Prem (ObserveIT) Application Server is installed is a member of a domain.
-
In the LDAP Settings page (Configuration > User Management > LDAP Settings), navigate to the Automatic LDAP Target section and click Detect Domain Membership.
-
If the Domain path and credentials are valid, the connection will be added to the LDAP Target List. The LDAP Target type will be set to "Auto".
The Detect Domain Membership button is grayed out and cannot be used again, because the endpoint can be a member of only one domain.
-
Click the Synchronize LDAP Groups to update new group names in Active Directory. This is only relevant if any Active Directory Groups names were changed in the ITM On-Prem (ObserveIT) configuration (for example, when including/excluding groups from being recorded).
After the LDAP connection is properly established, you can start working with Active Directory-based Console Users. Note that for auto-type LDAP Targets, Active Directory-based users and groups can be used.