3.2 Microsoft Active Directory

For a successful installation of the MyID system and the Entrust CA and Microsoft Active Directory Server there are some special requirements.

• The connection to the directory must be authenticated. When configuring the Directory connection within MyID, be sure to specify a username and password and the host and port information for the server. You cannot use an anonymous connection.

• The user specified for the directory configuration must be a member of the Entrust Security Administrators group on the Active Directory Server. You will need to have an administrator of the directory server do this.

• The LDAP root DN needs to be set as in the following format:

cn=AIA,cn=Public Key Services,cn=Services,cn=Configuration

followed by your particular domain information.

For example:

cn=AIA,cn=Public Key Services,cn=Services,cn=Configuration,dc=mydomain,dc=co,dc=uk