Creating a single sign-on account

Users in iBase can either be managed exclusively in iBase Designer or by connecting to a Windows Active Directory instance to allow single sign-on.

Before you begin

If you would like to set up your users to allow them to connect using their Windows account, you need to configure the users in iBase Designer to determine the access levels.

Procedure

To add a user who can automatically log on via single sign-on:

  1. Select Security > Security Manager.

  2. Click the Users tab to display the Users page.

  3. Either:

    • Click New.

    • Select an existing user and click Edit.

  4. Select Windows User / Group.

  5. Enter the Windows user name, in any of these formats:

    • DisplayName (example: FirstName LastName)

    • ObjectName (example: Group1)

    • UserName (example: Username1)

    • ObjectName@DomainName (example: Username1@Domain1)

    • DomainName\ObjectName (example: Domain1\Username1)

    Tip: If you do not know the user name, click Browse to search the network domain.

  6. Click Check Name to verify the name. The name is converted to the format <domain name>\<account name>. Successfully verified user names are displayed underlined.

  7. Enter the basic details of the user account:

    Details

    Notes

    Account is active

    By default, an account is active when created but you can disable it by turning off the checkbox in order to prevent them from logging on.

    Restricted audit log

    This setting is applicable only if you use Audit History and Audit Viewer. It is used to restrict other users from viewing the audit history of the current user.

    Account expires after

    The user can log on up to and including the specified date.

    Default category

    Optionally, enter the name of the default folder in which the user will save their folder objects. Leave this box blank to use the General folder.

  8. Assign permissions to this user. You can do one of the following:

    1. Click Copy Permissions and then select an active user with the required permissions.

    2. In the list of groups, turn on the for each of the required groups. To display just the groups of which the user is not a member, turn on the Show Unselected Items Only checkbox. You can also:

      • Add the user to all the groups by clicking Select All.

      • Remove the user from all the groups by clicking Clear All.

  9. Click Show User Permissions if you want to inspect the user's permissions after turning on one or more database management groups. For information on these permissions, see Checking user permissions.

  10. Enter contact details on the Information page. Click on the Information tab to display this page. See Adding user information for details.

  11. Click OK to save the details of the new user.