VOM Authentication with Active Directory
We've had VOM installed for a while and I thought I'd got the authentication working with AD all setup but it appears that only local administrators on the VOM server (Windows 2008 R2) are allowed to logon to VOM via the web interface.
VOM seems to be talking to AD ok as it's happy to create a new security group based on what i sin AD, it just appears to ignore it when users try to logon who are not members of the local admins group.
I did see some KB article relating to this in 4.0 but we have 4.1 with all the latest hotfixes installed. It was upgraded from 4.0 though so maybe this is the problem.
Would really appreciate any help on this as we want to allocate sub-permissions to certain groups of admins and until I get this fixed we can't do it.
Matthew: I see that you
I see that you have not selected a solution to your question. The entire method to complete the configuration is detailed in a knowledge article so you can confirm you completed all the steps to allow the process to complete.
The process simplified a bit is to authenticate a user and validate credentials with the login authority (Domain and broker) and then verify authorization within the application to content based on security group membership added to a role with a scope based either across the domain or on defined assets grouped into a Business Entity (previously defined) and turn views access on or off.
Assuming you have completed all the steps and there is no access to the application then ensure the desired user is in fact a member of the defined security group in VOM which matches a group definition on a broker within a domain as these must match and pass the validity check when creating.
Your error: <SEVERE><vrts.ob.web.core.InitializationServlet>:<validateUser>:<EXCEPTION stacktrace: Error during authentication ><>
indicates this did not occur correctly.
Note: following the process in the article would also have you enable the Domain you have added which is required.