Open Source Document Management System | OpenKM

HI

We have installed the open KM version 6.3.12 and its is working fine in local user. I would like to add my AD Users in OPENKM.
How to Communicate the my AD server from OPENKM. My question are below kindly help to clear my Doubts
1. We Need to create ROLE_ADMIN and ROLE_USERS Group In OUR AD? Without out Creating it will not work ?
2. Need to modify Openkm.xml file to add AD details or in UI configuration setting we can add attributes ?
3. How to can we find AD communicating with OPENKM server
4. If need to Create Group and users in AD what is the structure to create for OPENKM Roles and users and all.

Kindly clear my doubts and Thanks in Advance.

This is the most common configuration with the AD and I suggest you use it for your integration https://docs.openkm.com/kcenter/view/ok ... roles.html

The idea behind is that OpenKM acts as a reader of your AD, your AD has all the users and roles and everything is managed from there, that's why you need to create the security groups named ROLE_USER and ROLE_ADMIN and at least assign one to any user you wish to get logged in the application.

To help in the AD integration I suggest using this MS Windows tool https://learn.microsoft.com/en-us/sysin ... adexplorer will help a lot in discovering the distinguished names and filters you need for the integration.

I suggest first starting with OpenKM configuration parameters -> listing users and roles from the application -> when you succeed on it then update the XML file