|
To ensure SharePoint user accounts are recognized on the
LiveCycle server, synchronize LiveCycle and SharePoint user accounts
to the same user directory, such as an LDAP directory. Synchronizing
user accounts with the user directory allows users to access the
Adobe® LiveCycle® Rights Management 11 features on the SharePoint
site. After synchronization, assign the Services User role to the SharePoint
user accounts recognized on the LiveCycle server.
Complete the following steps to configure enterprise domain users.
If you configured enterprise domain users before installing the
Connector for Microsoft SharePoint, only complete Step 3.
Log in to Administration Console and click Settings > User Management > Domain Management.
Click New Enterprise Domain and enter the domain ID
and name.
The domain ID is the unique identifier for the
domain. When using DB2 for your LiveCycle database, the maximum
permitted length of the ID is100 single-byte (ASCII) characters,
50 double-byte characters, or 25 four-byte characters. Similarly,
when using MySQL for your LiveCycle database, use only single-byte
(ASCII) characters for the ID. See “Adding enterprise domains”
in LiveCycle Administration Help.
To add a custom authentication provider, click Add Authentication and perform
these tasks:
In the Authentication Provider list,
select Custom.
Select MSSharePointAuthProvider and then click OK.
Note: If
the MSSharePointAuthProvider service is unavailable, restart the
application server. Restarting the server after installing and configuring
the Connector for Microsoft SharePoint ensures that the LiveCycle
server recognizes the MSSharePointAuthProvider service as a custom
authorization provider.
To add an LDAP authentication provider, click Add Authentication
and perform these tasks:
To add an LDAP directory, click Add Directory and
perform the following tasks:
In the Profile Name box,
type a unique name, and click Next.
Specify values for the Server, Port, SSL, Binding, and Populate
page with options. If you select User for the Binding option, also
specify values for the Name and Password fields.
(Optional) Select Retrieve Base DNs to retrieve base
domain names, as required.
Click Next.
Configure the user settings, and click Next.
Configure group settings, and click Next
For
details about the settings, click User Management Help in the upper-right corner
of the page.
Click Finish to exit the Add Directory page and then
click OK again.
Select the created enterprise domain and click Sync Now.
Depending on the number of users and groups in your LDAP network
and speed of your connection, the synchronization process can take
several minutes.
(Optional) To verify the status of the synchronization,
click Refresh, and view the status in the CurrentSync State
column.
Navigate to Settings > User Management > Users and Groups.
To search for users that were synchronized from LDAP and
assign roles, perform the following tasks:
Select
one or more users and click Assign Role.
Select one or more LiveCycle roles and click OK.
Click OK to confirm the role assignment.
Repeat for all users that you assign roles to.
For
more information, click User Management Help in the upper-right corner
of the page.
If you configure enterprise domain authorization provider using
these steps, any processes invoked using the process context from
Adobe® LiveCycle® Workbench 11 uses the context of the user starting
that process. See Workbench Help for more information.
|
|
|
