Active Directory Authentication
To use Windows Active Directory authentication to authorize connections from Working Papers, SmartSync Server must be installed on a the server that is part of the Active Directory domain and the authentication for the SmartSync site must be configured for Windows Authentication.
Adding the Server to the Domain
To confirm that the server is part of the same Active Directory, enabling Working Papers to pass through the Active Directory credentials to the SmartSync Server, follow the procedures outlined in the Microsoft help:
Configuring Windows Authentication for SmartSync Server
Configure Active Directory Authorization on IIS for SmartSync Server using the following procedure.
Prerequisites
Complete the IIS server configuration and the SmartSync Server installation.
Procedure
-
Open Administrative Tools | IIS Manager.
- In the Connections pane, click computer name | Sites | Default Web Site.
- Click on SmartSync.
- Double-click the Authentication icon in the center pane.
-
In the Authentication pane, ensure that all entries are disabled except Windows Authentication. To enable or disable an entry, select the entry and click Enable or Disable on the Actions pane.
- Click the computer name in the Connections pane and on the Actions pane, click Restart.
Results
SmartSync Server is configured to use Active Directory authentication.
Note: During Kerberos authentication, the security ticket includes all security groups which the user is a member of and encodes this in the Authorization header. If the user is a member of many security groups, the Authorization header can exceed the size limit. This can result in failed authentication or slow response times. For more information, see Authentication Issues.
