Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2014-08-20 05:50 PM

Can you combine Active Directory and Custom Directory authentication?

We currently have DSC hooked up to our Active Directory, and AD users can log in.

We would like to create additional users that can log in and access documents. The Custom Directory feature under DSC seems perfect for this. We can create users and groups, and assign them to workbooks using DMS authorization.

However, no combination of web server settings seems to allow both AD users and custom users to log in. We can set logins to be by NTLM (for AD) or to Custom User, but not both.

Is there *any* way to make this work? Or any alternate way to allow both AD and non-AD users to use the system? Thanks in advance!

Labels (1)
Labels
1,232 Views
0 Likes
1 Solution

Accepted Solutions
lft
Employee
Employee
‎2014-08-21 04:21 AM

Hi Steven,

ASHFAQ is right, by default you have to choose between one or the other.

There is a way though. You should know this way is not supported. You can contact your local Qlik office and they will provide expert consultant that can build and support this for you.

The way is to customize Authenticate.aspx. By doing so, you can build whatever authentication method you want, for instance : try on AD, if it fails try on Custom. You will need to add two DSC providers (one for each) to resolve the groups of both directories.

This will most likely need that you switch to IIS if it's not already done.

Loic

View solution in original post

773 Views
2 Replies
ashfaq_haseeb
Champion III
Champion III
‎2014-08-21 02:26 AM

Hi,

You can use only one Authorization mechanism at a time.

If you use NTLM you can't use Custom directory or DMS.

I suggest to create some user in your active directory as Custom directory is not suited for bigger implementation

Regards

ASHFAQ

773 Views
lft
Employee
Employee
‎2014-08-21 04:21 AM

Hi Steven,

ASHFAQ is right, by default you have to choose between one or the other.

There is a way though. You should know this way is not supported. You can contact your local Qlik office and they will provide expert consultant that can build and support this for you.

The way is to customize Authenticate.aspx. By doing so, you can build whatever authentication method you want, for instance : try on AD, if it fails try on Custom. You will need to add two DSC providers (one for each) to resolve the groups of both directories.

This will most likely need that you switch to IIS if it's not already done.

Loic

774 Views