LDAP & SSO Servers

If ExtraView Corporation is hosting your installation, you do not have direct access to the file system of the server to configure, alter or use this feature without contacting ExtraView support.

ExtraView may be configured to work with both Lightweight Directory Access Protocol (LDAP) and Single Sign On (SSO) servers. LDAP servers include Microsoft's implementation named Active Directory. It is not necessary to configure both LDAP and SSO at the same time, although this can be done.

We strongly recommend that you have access to a resource that is skilled in administering LDAP and/or SSO to set up these features.

You may connect directly to an LDAP server, or you may connect to an LDAP server via SSO. Typically, it is slightly easier to configure the combination of LDAP and SSO servers, as opposed to configuring only an LDAP server.

This section discusses connecting ExtraView with both SSO and LDAP first, and then discusses a direct connection to LDAP without SSO.

Neither LDAP nor SSO is part of ExtraView, but are separate applications that ExtraView may integrate with. There are many “flavors” and implementations of both LDAP and SSO and they may be configured in many different ways by different organizations. While ExtraView may connect to and use LDAP and SSO, the configuration is often different from one installation to another. ExtraView’s professional services team can help with the integration of ExtraView to your LDAP and SSO servers, but this is not part of the standard installation, and may be a separate, chargeable event.

Setting up LDAP and SSO implies that you will set up the configuration in both behavior settings and within the Configuration.properties file external to ExtraView.

Note that there is also a hybrid authentication mode, where ExtraView can authenticate against an LDAP server and also use its own internal authentication mechanism. This is ideal in an environment where you want to use the LDAP server for internal users, but use ExtraView's authentication for your customer users.

LDAP Synchronization

There are two background tasks that can be used to enhance the LDAP server performance. Only one of these should be configured at one time, and for most purposes, this should be the task titled LDAP Background Task and not the LDAP Synchronization Task.

The background task configuration is described on the page here.