Active Directory (AD) integration

AD integration is an optional MIS module. A Volicon support engineer will need to be involved to configure the server.

Prerequisites

The following prerequisites need to be met for the AD integration to proceed:

  • The support engineer needs to know the IP address or the fully qualified domain name (FQDN) of the AD server. The FQDN is more flexible and is preferred.

  • Add the MIS web server to the AD domain.

  • Create a simple domain user with a non-expiring password and notify Volicon support.

  • Provide the support engineer with your organizational units (OUs) and their basic structure.

  • Upgrade all the MIS servers to the latest qualified build prior to integration.

  • Configure all your client browsers to have the web server address in their intranet zone or IE trusted zone.

AD operation

  • After all prerequisites are met, you must define several groups in the MIS. To do so, you can access the system with a non-AD password through the URL http://<server>/admin/. When using AD integration, the user’s set of permissions (including accessible channels and maximum number of concurrent channels played) is defined on the MIS groups (user management section).

  • You must also create identical group names as defined in MIS in the AD. Once completed, the administration of users’ access to MIS and their privileges will only be administered through the AD by adding or removing users as members of the different groups. Note: One exception is the number of concurrent channels. By default there is no limit; if defined, the MIS settings will be used. Furthermore, if multiple groups define the number of concurrent channels, the highest number will be used even if it is set to unlimited.

  • Initially, the user accesses the MIS system through a browser with only an IP address or a domain name. Access to the MIS system is provided automatically according to the user’s assigned group(s) in AD, matching the user by group name to the defined MIS groups. If the user is a member of several groups, their effective permissions will be the sum of all permissions of those groups.

  • The user’s name is automatically created internally within the MIS upon first login. It is then associated with the user-generated content in the MIS (e.g., clips, programs etc.).