Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • There must be a frevvo.User group in Active Directory
  • All the users in your LDAP-CSM tenant must be members of this group
  • The tenant admin must have the roles of frevvo.TenantAdmin, frevvo.Designer and frevvo.User. 
Warning
  • The group names for these three special roles must be frevvo.User, frevvo.TenantAdmin, and frevvo.Designer. Upper/lower case may be a factor for Open LDAP systems.
  • frevvo Best Practice recommends that you create a user account in your Active Directory or IDP that will house all of your deployed Production forms/flows. This user can be named anything i.e.frevvoProduction but it must be a member of the frevvo.Designer group
  • If you want to preserve Applications/Forms/flows developed in your trial/starter tenant, download them to your desktop as a backup BEFORE changing the Security Manager
  • frevvo only supports the LDAP Container Security Manager when
    Frevvoproduct
    is running in the tomcat container. Refer to our Supported Platforms for the list of Application Servers supported/certified by frevvo.

Configuration Steps

  1. Stop 
    Frevvoproduct
     if it is running.
  2. Modify the <frevvo-home>\tomcat\conf\server.xml file. Here is an example of the changes needed when using tomcat.

    1. Edit this file with a text editor.

    2. Search for 'ldap://localhost:389 - you should find this in the org.apache.catalina.realm.JNDIRealm section of the file. 

    3. Uncomment this section. Replace the existing code with the code shown below: 

    4. Replace the connectionURL, connectionName and the connectionPassword default values with your LDAP server information. 

    5. Refer to this Apache Tomcat website for detailed information about the remaining parameters.

...

      3. Start 
Frevvoproduct
.

      5. Create a tenant with the LDAP Container Security Manager .  

...