Setting up Active Directory integration (NTLM)

Set up NTLM details2

The following details are required to allow the Protex server to connect to the AD domain. When setting up NTLM authentication for Protex it is essential that the CacheBox's own NTLM mechanism is Disabled. Once all the required information has been entered the server will need to be rebooted. Once it has restarted log in again and go to Server Configuration -> Samba/NTLM status menu to confirm that Protex has joined your local domain.

Browser Setting Requirements (for NTLM Authentication)

Domain

This is the Windows2000 compatible domain name and not a FQDN. Typically it will be a single string of UPPERCASE, e.g. MYSERVER.

Realm (ProtexLocalVA only)

This is the realm of you AD server. Typically it will be a single string of UPPERCASE characters formatted like a DNS domain with dots ('.'), e.g. MYSERVER.TEST. If you are unsure what to use contact your school Active Directory server administrator or network manager.

ServerName

The AD server's hostname - again this is not the FQDN.

Auth type

Auth. Server (PDC) IP Address

The IP address of the AD server or PDC.

Domain Admin Username

The user entered here should not be the main domain administrator for security reasons. A better option is to create a dedicated Protex user and make it a member of the Domain Administrators group.

If you want to restrict it further by creating a special group for the user with more limited rights then the essential abilities required of this user are:

As individual AD configurations differ we do not support this last option - please feel free to experiment but we cannot support/troubleshoot connection problems where the connecting user is not a member of the Domain Admins group.

Domain Admin Password

The password of the user entered above.