Configuring Windows Active Directory

You can configure Microsoft Windows Active Directory to be the directory service for FileNetĀ® P8 .

About this task

In a multi-domain Active Directory environment, a logon will fail for any account whose user name and password in a parent/child domain does not match those in a child/parent domain.

If you have an Active Directory failover configuration, you can configure FileNet P8 to follow this failover sequence whenever Content Engine attempts to authorize an already authenticated user. You can do this during Content Engine installation while running the Create a Directory Configuration wizard, or at any time after.

Server Side Sorting (SSS) must be enabled. This is because FileNet P8 components call on Content Platform Engine to perform searches using a sorted paging mechanism. Note that SSS is normally enabled by default but is sometimes disabled due to concerns with performance.

DNS forwarders provide external DNS lookup functionality. If you are working in an "isolated" network, a DNS forwarder is not required. However, if you want to access the Internet or other network resources, then a DNS forwarder pointing to a DNS server that serves the external resources (for example, the Internet) is required.

Procedure

To enable DNS forwarders:

  1. On the machine that is configured as the Windows DNS Server, log on with an account that can configure the DNS components.
  2. Start DNS.
    For example, on Windows 2008, choose Start > All Programs > Administrative Tools > DNS .
  3. Right-click the your_computer_name container and select Properties.
  4. Select the Forwarders tab and verify the check box for Enable forwarders is selected.
    If this feature is grayed out (unavailable), you must reconfigure your DNS server.
  5. If you selected the check box, add an appropriate IP address and click OK.
    This IP address can be the IP address of a DNS server that allows traffic to the Internet.