This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Mechanics of Authentication

Sharon_Griffin
Champ on-the-rise
Champ on-the-rise

‎07-16-2018 11:48 AM

Can you explain the communication and verification process between the workstation, OnBase and AD to authenticate the user?

Labels:
0 Kudos
7 REPLIES 7

Andy_Rusnak
Star Contributor
Star Contributor
In response to Andy_Rusnak

‎07-18-2018 07:51 AM

Hi Michelle,

The user would need the 'Read Group Membership' privilege. I believe it is a specific right that would need to be granted that is beyond the 'Read' privilege. It needs the ability to be able to read other users user groups within AD. By default you can always read your own, but you cannot read other users. That is what the AppPool needs to do. For the Web Client, you would need to have the account running the Web Server AppPool have the rights to query AD since that is where the authentication would be taking place for the Web Client since your AppPools are separated.
0 Kudos

Sharon_Griffin
Champ on-the-rise
Champ on-the-rise

‎07-18-2018 08:15 AM

I also read that the SID is stored in the database but cannot find documentation as to where in the database this information would be stored? Can you supply that informtion to me please?
0 Kudos

Not applicable

‎07-18-2018 08:20 AM

The table where the SID is stored is hsi.useraccount, the field is securityid

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC