Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

    1. Login to 
      Frevvoproduct
      as an  administrator (user:admin and password:admin if you have not changed it)
    2. Click on Manage and then Manage Tenants
    3. You will see a page where the current tenants are listed. If this is a new installation you will only see the default tenant d
    4. Click on the plus icon to add a new tenant.
    5. Configure the new tenant - Choose LDAP Security Manager.from the Security Manager Class drop down.
Section
Column
width25%
Panel
titleAdd New Tenant Screen


Add New Tenant

Column
width25%
Panel
titleEdit Existing Tenant Screen

      1. Enter your LDAP Configuration Properties and Sample Configurations. Alternatively, you can start off from one of the sample configurations and provide only the key information listed above. See below for information on the TLS checkbox.

        Note

        The Name/value table highlighted in the image allows you to configure up to 10 additional LDAP properties. See this Oracle website for a complete list of all available LDAP properties. For example, you can configure

        Frevvoproduct
        to ignore or follow referrals.

        Setting the java.naming.referral property to a value of "ignore" in the Name/Value table configures

        Frevvoproduct
        to ignore referrals. Consult your LDAP Administrator for the details.

      2. If you are creating a new tenant:
        1. Enter a tenant id, a tenant name and description.
        2. The Max Concurrent Users is the maximum allowed by your license or less.
        3. Specify the User ID, password and email address of a user that will have the tenant admin permission. This user id is the built-in admin and can be used to access tenant administrative functions if you cannot log in as an authenticated LDAP tenant admin.
          1. The tenant admin id, password and email fields are required. The Change password on next login is optional. It is checked by default.
        4. Click Submit. You will see your new tenant in the tenant list if the connection to your LDAP server is successful.


Warning

The Ignore Case and Notify checkboxes are checked by default. It is recommended that you leave them checked. Refer to Mixed or Upper case User Names topic for an explanation of the Ignore Case option.

The Notify checkbox determines whether the task notification emails setup in

Frevvoproduct
flows are sent or not.

 
Clicking the submit button tests the connection. Any errors are displayed at the top of the form. Here is an example of an error when there is a typo in the LDAP server name:


Here is another example if the connection password is not correct


Refer to FAQ - Live Forms frevvo and LDAP for more troubleshooting information.

...

No additional configuration is needed.

Configure frevvo.internal.baseurl in frevvo.xml for LDAP SSO

...

Configure URL Properties in frevvo-config.properties for LDAP SSO

Add the frevvo.internal.baseurl and the frevvo.forms.server.external.url properties to the frevvo-config.properties when using LDAP SSO. The frevvo.internal.baseurl property is needed for for various activities like accessing the ACL page, publishing templates, resetting tasks etc when using LDAP SSO.  LetLet's say you have a browser signed in via SSO to machine m1 (port 80).  IIS is running on m1 (port 80) redirecting /frevvo/web to frevvo running on m2:8082. The browser submits a form to m1, IIS redirects to m2:8082.  The doc action is a frevvo:// URI which gets resolved to http://m1/frevvo/...  

Frevvoproduct
 POSTs to this URI  but m1 rejects the POST since it is not authenticated.

To avoid situations such as these, set the frevvo.internal.baseurl to the actual host:port of the 

Frevvoproduct
 server. Follow these steps:

...

If the frevvo.forms.server.external.url  property is set, all share dialogs for forms and flows will use this as the external URL. This may be needed when using frevvo.forms.server.external.url if that external url is not also accessible from the form server machine. Use the syntax shown in the example. change the <myexternalhost>and <port> to your external server name and the port that you are using for 

Frevvoproduct
 on this server.

Follow these steps:

  • edit <frevvo-home>/tomcat/conf/catalina/localhost/frevvo-config.xmlproperties
  • Add the parameter properties shown below with your information: Save the changes to the file.

Code Block
Parameter name="frevvo.internal.baseurl" value="http:// <ip or server name of the m/cmachine where the frevvo server is hosted>:<port>" override="false"/>
frevvo.forms.server.external.url=http://<myexternalhost>:<port> 

Upload and Video Control Behavior

If your system is configured for LDAP SSO, the upload and video controls exhibit the following behaviors:

...