- 2 minutes to read

What is a Windows AD Group?

Use Windows domain groups instead of pinpointing individual Windows user accounts.

Nodinite can authenticate Users that are members of Windows AD Groups. You can associate these with the instance-specific Nodinite application Roles.
Windows AD Groups

  • All Windows AD Groups can be added, except the built-in Windows Administrators group.
  • For any Role; The Nodinite Administrator can mix Users and Windows AD Groups freely.

Note

There is no validation on the names entered; Ensure that the Windows group actually exists and is adequately spelt.

Note

If someone renames the Windows AD Group, the Nodinite Administrator must manually mirror these changes in Nodinite

Note

You must be a member of the Nodinite Administrators role to manage the Windows AD Groups (and all other administrative parts/objects).

Policy-based authorization

In Nodinite, there is a build-in Role named Administrators. You can not rename and/or delete this Role. See Access Management for additional details.

Prerequisites

The IIS Windows Server hosting Nodinite must be part of the Windows domain/forest (with proper trusts, if this is applicable).

System Parameters

To enable the use of Windows AD groups; You must set the System Parameter UseActiveDirectoryGroups to the value "true". Also, the Nodinite IIS AppPools (Web Client and Web API) must be recycled, and the browser must be re-read (usually ctrl+F5 or ctrl+R).

Use Active Directory Groups
Here's an example of the 'UseActiveDirectoryGroups' system parameter.


Next Step

Add or manage Windows AD Group
View All Windows AD Groups
Add or manage Log View
Add or manage Monitor View

Access Management
Log Views
Monitor Views
Roles
System Parameters
Users