Versions Compared

Old Version 2

changes.mady.by.user Dan Miranda

Saved on

compared with

New Version Current

changes.mady.by.user Square 9 Support

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Once you've gathered this information, it needs to be entered into X:\GlobalForms\config\default.jsjsonX:\GlobalForms represents the location you installed GlobalForms 10.

  1. Open your default.js file in a text editor such as Notepad or Notepad++. 
  2. Locate the LDAP Section, this by default is commented out.
    1. Note, if you have upgraded from a GlobalForms 10.0, the LDAP section will not be in your configuration file and will need to be manually added.
  3. Remove the the starting slashes "\\" to uncomment the LDAP Lines until it your configuration matches the one below.
"ldap": {
  "url":      "ldap://yourdomaincontrolleryourdomaincontroller",
  "baseDN":   "dc=domain,dc=local",
  //"ou": ["MyUsersOU","OtherOU"],
 "interval": 060,
  //"filter": "(objectclass=*)",
 "username": "somedomain\\someuser",
 "password": "somepassword"
},

...

  • URL: The location of your LDAP or Domain Controller, by default LDAP uses port 389 to connect.
  • BaseDN: The root FQDN of your server, ie: square9.local, would be entered as dc=square9,dc=local.
  • OU:  You can limit GlobalForms 10 to pull objects from OUs specified here.
  • Interval: How frequently users are synced from AD, in minutes.  Note that specifying 0 will indicate that the system should never automatically sync.  
  • Filter: Filter to specific objects, if you leave this commented, all objects will be pulled.
  • Username:  This is a username used to authenticate to your domain, this username must have sufficent rights and access to read users/groups on your domain.
  • Password:  The password to connect to the aforementioned user.

Once this is configured, simply restart your "GlobalForms10" GlobalForms Service in the Services area in Windows.  You will need to perform an initial sync of users to GlobalForms 10, this is done .  The GlobalForms service in services should be running as local system.

Synchronization can be done manually  by clicking on the "Syncronize Synchronize AD" button after logging into GlobalForms 10 as your administrator userthe administrator user.  Automatic synchronization will not commence until the first interval period has elapsed after starting the service.

Once complete with setup and sync, usage is transparent.  Any AD groups synchronized into the GlobalForms platform we be available from the access tab on a form.  Note that permissions applied on the access tab are considered "in addition to" permissions that may be applied by GlobalCapture to a specific submission in a validate node.

Customer should target specific OU's to prevent cluttering the system with unneeded and / or unnecessary users and groups.  The access tab of GlobalForms will become important in scenarios where you don't want specific users to be able to submit forms into a process.  By default any user that has been synchronized will have access to create new submissions for any form.  This default behavior is a direct result of the default permission set for a form being set to the "Authenticated" role.