OrgPublisher v11 - AD (Active Directory) Authentication set up
Applicable Product: OrgPublisher
Applicable Release: OrgPublisher V11.x (11.10 and later for HTML5)
Summary:
If you chose to use AD Authentication you must include the Active Directory ID in your input data and create a custom field e.g. UserID - this is for OrgPublisher to read and compare to the Windows token. If you do not have it in your Primary data source you will need to add it or create a secondary data source to be applied.
When you set AD Authentication in the Publishing Definition, OrgPublisher will pull the results above from Windows and then compare it to the data in the custom field within the Chart. It verifies that john.doe exist in the chart using the custom field ADID as defined in the data source.
Once you have the ADID in your data and you have refreshed your chart, then go into Data>custom field Properties and name your new custom field (Active Directory ID) to something meaningful such as ADID or UserID. Also, be sure to assign it to all Position types.
Verify that this custom field is NOT searchable, it is set by default to unchecked but it is always a good idea to verify as this is a sensitive field. To verify just click on ‘Search Properties’ and ensure the ‘Allow this field to be searchable in the search view……’ is NOT checked.
Now go to your Publishing Definition, you can either use an existing one or create a new definition.
If existing then click on ‘Update’
If New then step through the publishing wizard
When you reach Security Options then check ‘Active Directory Authentication’ and in the User ID field drop down list select the custom field you created. You will also want to select where in the chart you want the user to enter in the ‘Starting box in Chart’ section.
‘Starting Box in Chart’ options:
Top of chart – Select this radio button to open the chart at the original top of chart box, displaying all levels in the chart.
Supervisor’s box – Select this radio button to open the chart at the user’s supervisor’s box, display all levels from that point downward.
User’s box – Select this radio button to open the chart at the user’s box, displaying all levels from that point down.
Box Id in this field – Select this radio button to open the chart at a top of chart box other than the previous options. This unique ID must be stored in an input file custom field record. Use the down-arrow to make your selection in the adjacent field.
Allow Users to drill up from starting box – Checking this box will allow users to drill up from starting box check box is the default selection and allows user to navigate to levels above their box in the chart. Clear the check box if you do not want to navigate above their own chart level.
Complete the wizard by publishing your chart and verify. Please remember that when testing your (own) Active Directory ID must be in the Chart.
Example:
For testing I did enable the ADID to verify. As you can see from the chart below based on the ADID it opened at the box that my ADID was assigned to and I cannot drill up the chart.
For HTML5 there are additional steps:
When using HTML5 the unsecure and secure charts must be in separate folders and have separate Charting Instances.
Open OrgPublisher HTML5 Configuration tool and if you haven’t, create a Charting Instances for your HTML5 secure folder. Then enable the ‘Secure’ radio button and ensure ‘Windows Authentication’ displays in the dropdown:
Now open OrgPublisher Application and within OrgPublisher ‘Publish Location’ chose your ‘secure’ folder for HTML5:
The Advanced Security Options would be the same as in the example above:
Complete the wizard by publishing your chart and verify. Please remember that when testing your (own) Active Directory ID must be in the Chart.
Example:
For testing I did enable the ADID to verify. As you can see from the chart below based on the ADID it opened at the box that my ADID was assigned to and I cannot drill up the chart.
Created : 2020-10-23
Reviewed: 2020-10-23