How do I configure Quin-C to use Active Directory authentication?
- Active Directory authentication can only be tied to one domain. If your users are spread over multiple domains, you should not use Active Directory authentication.
- Application-level, non-domain users will not be able to log in to Quin-C if Active Directory authentication is enabled.
1. Log in to Quin-C and open the Admin widget
2. Open the System Administration tab, and then the System Values tab
3. Scroll down to the Active Directory Information section, and complete the values as defined below:
Server: Name or IP of the Domain Controller
Port: LDAP port (see typical options below)
389 = Standard LDAP/TLS Port on a non-global catalog server
636 = SSL Encrypted LDAPS on a non-global catalog server
3268 = Standard LDAP/TLS Port on a global catalog server
3269 = SSL Encrypted LDAPS on a global catalog server
Base DN: Distinguished Name of the base OU
UserDN: Distinguished Name of a user with Domain Read Object privileges
UseGC: Whether or not to use Global Catalog
4. Click Save
5. Import at least one User from Active Directory via the Admin widget, and give them the Application Administrator Role
Note: Any existing non-domain users will not be able to log in to Quin-C beyond this point
6. On the Quin-C server, navigate to the Quin-C bin folder (typically "C:\Program Files\AccessData\Forensic Tools\<version>\bin")
7. Open ADG.WeblabSelfHost.exe.config in a text editor
8. Under the appSettings section, find and edit the value of the UseAD key as defined below:
<add key="UseAD" value="0" />
1: Integrated Windows Authentication (User-based authentication)
2: Integrated Windows Authentication (Group-based authentication, see this)
3: AD + Forms (User-based authentication)
9. Save your changes, and restart the AccessData Quin-C Self Host Service service
Note: If UseAD is set to 1 or 2, you should leave LoginPage.html off the URL when navigating to Quin-C.