Allow AD or LDAP Users to Create a New Account
Administrators can customize how new user accounts are created.
In these scenarios you are allowing AD or LDAP users to create a new FileCloud user account in one of the following ways:
Admins want FileCloud to automatically create a new FileCloud account for their Active Directory or LDAP Users on First Login
- Active Directory or LDAP Users create a new FileCloud account different from their AD or LDAP credentials
The settings that you use to configure this scenario are described in Table1.
The scenarios where a user can create a new FileCloud account are described in Table 3.
Admins want FileCloud to automatically create a new FileCloud account for their Active Directory or LDAP Users on First Login | Active Directory or LDAP Users create a new FileCloud account different from their AD or LDAP credentials The Admin can configure the approval process | |
---|---|---|
|
| |
Settings option, Authentication tab Authentication Type = ACTIVE DIRECTORY or LDAP Customization settings, Login tab New Account button = ENABLED Settings option, Admin tab Allow Account Signups = DEFAULT Automatic Account Approval = 1, 2 | Settings option, Authentication tab Authentication Type = ACTIVE DIRECTORY or LDAP Customization settings, Login tab New Account button = ENABLED Settings option, Admin tab Allow Account Signups = DEFAULT Automatic Account Approval = 0, 1, 2, 3 |
For more information:
Configuring a Scenario
FileCloud supports the following Authentication modes:
- Default Authentication
- Active Directory based Authentication
- LDAP based Authentication
Table 3 Describes how each authentication mode impacts the users' ability to create a new account.
Table 3. Authentication Modes Comparison
Default Authentication | AD | LDAP | |
---|---|---|---|
Authentication | Performed by FileCloud Server | In AD Server | In LDAP Server |
Allowing Users to Create Accounts | Permitted | Not Permitted | Not Permitted |
User Account Types | Full, Guest, External | Full, Guest | Full, Guest |
Prerequisites
- Active Directory or LDAP service must be accessible from FileCloud (IP and Port must be accessible)
- Active Directory or LDAP must support Simple Authentication Method (Anonymous or Name/Password Authentication Mechanism of Simple Bind)
- Active Directory or LDAP users must have an email attribute
- The FileCloud version must be 4.0 or higher
To allow an AD or LDAP user to create a new FileCloud user account:
- Log in to the FileCloud Admin Portal.
- In the left navigation panel, click Settings.
- In the right panel, from the selection of tabs, click Authentication.
Under Authentication Settings, in Authentication Type, select ACTIVE DIRECTORY or LDAP.
- To enable the New Account button, in the left navigation panel, click Customization, and then the Login tab.
- Next to New Account, select the checkbox if it is not already selected.
- To allows users to create an account, in the left navigation panel, click Settings, and then the Admin tab.
- In Allow Account Signups, select Default.
- To set an approval method, in Automatic Account Approval, choose one of the following values.
Value | Description |
---|---|
(Default) 0 | The account created by the user is DISABLED by default. It requires Admin approval to assign FULL or GUEST access to the account. |
1 | The new user account is automatically approved with FULL access. |
2 | The new user account is automatically approved with GUEST access. |
3 | The new user account is automatically approved with EXTERNAL access. |
The user is notified by email when:
- Trying to connect (Admin approval pending)
- When the administrator has approved the device trying to connect