This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Create user in OnBase with AD Configuration

Go to answer
Ryan_Wakefield
World-Class Innovator
World-Class Innovator

‎07-01-2021 12:11 PM

Is there a way to use the Unity API to automatically create a user inside of OnBase that is tied to an AD account to where you can map a SID to that same user to be created. I am hoping I am just missing the details of what I need in order to accomplish this.

 

Thanks.

Labels:
0 Kudos
1 ACCEPTED ANSWER

Go to answer
AdamShaneHyland
Employee
Employee

‎07-12-2021 09:43 AM

Hi Ryan.

 

You can create an OnBase User Account in Config or via the Unity API.  In both cases, when you create the user account it will not have a SID mapped to the OnBase User Account.  When the user attempts to login via directory service authentication (i.e. AD - Enhanced), OnBase will attempt to find a user with the same SID.  Since this will return no user accounts, it will then look for an OnBase User Account with the same name (i.e. hsi.useraccount.username = AD sAMAccountName attribute).  If they match, then OnBase will store the user's AD SID with the OnBase User Account in the database and the SID will be used the next time the user authenticates.

 

Best wishes.

View answer in original post

12 REPLIES 12

Go to answer
Thilina_Random2
Star Contributor
Star Contributor

‎07-01-2021 01:28 PM

A user account in OnBase having the same username as a user account in AD will technically be automatically mapped. I don't believe there is a way to map using a SID.

0 Kudos

Go to answer
Ryan_Wakefield
World-Class Innovator
World-Class Innovator
In response to Thilina_Random2

‎07-02-2021 08:25 AM

When you are using AD - Enhanced and Active Directory, then yes you will map based upon the SID. That's why AD - Enhanced worked. I guess I will have to do some testing to see if I can create the user inside of OnBase, but then see when a user logs in using AD - Enhanced that it maps the SID and such to the created user. Just need to mess with it and test it out I guess.

0 Kudos

Go to answer
AdamShaneHyland
Employee
Employee

‎07-12-2021 09:43 AM

Hi Ryan.

 

You can create an OnBase User Account in Config or via the Unity API.  In both cases, when you create the user account it will not have a SID mapped to the OnBase User Account.  When the user attempts to login via directory service authentication (i.e. AD - Enhanced), OnBase will attempt to find a user with the same SID.  Since this will return no user accounts, it will then look for an OnBase User Account with the same name (i.e. hsi.useraccount.username = AD sAMAccountName attribute).  If they match, then OnBase will store the user's AD SID with the OnBase User Account in the database and the SID will be used the next time the user authenticates.

 

Best wishes.

Go to answer
Roger_Linhart
Elite Collaborator
Elite Collaborator
In response to AdamShaneHyland

‎07-12-2021 11:25 AM

@Adam Shane isn't this behavior only in Foundation? I'm basing this on an issue we had when upgrading to Foundation and Active Directory enhanced (from AD Legacy/Basic).

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC