Currently, DataMiner supports a single Active Directory with multiple subdomains in one forest.
But does DataMiner also support 1 single forest with 1 subdomain per site and cloud in term of AD structure?
DataMiner supports connecting to a single AD as well as connecting to multiple ADs. Single AD scenarios:
- In case the DMA server (OS) itself is already part of the domain in question, no further configuration is required. You will automatically have access to all domain users/groups when accessing the Users/Groups configuration in DataMiner Cube.
- In case the DMA server (OS) is not part of an AD, you will need to change your DataMiner System configuration via System Center > System settings > LDAP, and provide the system with the correct LDAP (AD) information.
In the above-mentioned scenarios, the DataMiner software will communicate directly with the domain controller in question. This domain controller may run standalone or be part of a larger forest structure. Multiple AD scenarios: Here you have the option to decide whether we will configure DataMiner to communicate directly with the multiple separate domains or whether you put an LDAP server in between where the LDAP server will communicate with the multiple domain servers and DataMiner can connect to this single LDAP repository to read out users/groups from both domains.
- In case of an LDAP repository that combines the info of the multiple domains, you will need to change your DataMiner System configuration via System Center > System settings > LDAP, and provide the system with the correct LDAP information.
- In case DataMiner is required to directly access multiple domain controllers, you will need to change your DataMiner System configuration via System Center > System settings > LDAP, and provide the system with the correct LDAP (AD) information for each LDAP (AD) connection.
More detailed info on this can also be found in the DataMiner help pages available on any DataMiner Agent under the section Advanced security configuration > Configuring LDAP settings.
Note: Applying this LDAP definition to the DataMiner.xml configuration file can be done via DataMiner Cube > System Center > System Settings > LDAP. In this case the setting will automatically be applied to all agents in the cluster. When adjusting the DataMiner.xml file manually, you will need to add this info to the DataMiner.xml file of each DMA in the cluster and restart the DataMiner software on all of the DMAs in order to apply the change.