Enabling Active Directory Security Mode

GENESIS security can synchronize its user accounts with Active Directory. Users will be able to log in with their Active Directory username and password. Permissions for users and groups are defined in the GENESIS security database.

Active Directory passwords are not stored in the GENESIS configuration database.
To synchronize with Entra ID, see Enabling Entra ID Security Mode

To synchronize security with Active Directory:

Optional: Set security to testing mode to help keep you from getting locked out if something is configured incorrectly later. Learn how

Do not make this change on a production system.
1. In Workbench, go to Security > Global Settings > General tab.
2. Set Security active to Testing.
3. Apply the changes.
In Workbench, go to Security and edit Global Settings.
Set Security Mode to Active Directory, then fill in the Active Directory Settings section according to your domain settings.
To restrict login access to users in a specific group, go to the Only Users from a Specific Group section, check Enabled, and fill Group Name.
In the Domain Connection Authentication section, enter the User Name and Password for the account used to authenticate access to the Active Directory.
Optional: Enable automatic login and Windows integrated authentication. Learn how
1. Under Automatic Login, check Enabled.
2. Go to Tools > FrameWorX Server Location and set Client Authentication to Integrated Windows Authentication.
  
  Alternatively, check that you have configured client certificates for authentication that map to the Active Directory.
Apply the changes, then test logging in as an Active Directory user.
If all tests succeeded, set security to active mode. Learn how
1. In Workbench, go to Security > Global Settings > General tab.
2. Set Security active to Active.
3. Apply the changes.