Configure Active Directory authentication

Active Directory authentication is embedded in IBM® Cognos Controller so all you have to do is configure it.

Before you begin

Make sure that the following things are in place:
  • The Cognos Controller server must be in the Active Directory that is used for authentication. If the server has Microsoft Windows 2012 or earlier installed, then you must install the Windows Authentication component. For more information, see Adding Windows Authentication Providers <add> (https://docs.microsoft.com/en-us/iis/configuration/system.webserver/security/authentication/windowsauthentication/providers/add).
  • Cognos Controller directories and the Cognos Controller application pool are set up.

Procedure

  1. Open Internet Information Services Manager and select the controllerServer application.
  2. Double-click Authentication.
  3. Enable Anonymous Authentication and Windows Authentication.
  4. Open IBM Cognos Controller Configuration.
  5. In the Explorer pane, click Server Authentication.
  6. For the authentication method, select Windows Authentication.
  7. Under Authentication settings, set the following values:
    Active Directory Domain
    Domain name of the Active Directory
    Active Directory Base DN
    Search path from which look up of users is done
    Active Directory User
    User to bind to the Active Directory
    Active Directory User Password
    Password of the Active Directory user
  8. Click Save save icon.
  9. Open the <Controller-install-path>\ccr_64\fcmweb\wlp\usr\servers\fcm.web\com.ibm.cognos.fcm.web.properties file and set the following value: loginMode=ACTIVE_DIRECTORY.