Active Directory groups - On Premises: 2022.R3

Author-it Administrator

Author-it groups can be assigned to Active Directory Groups to provide easy and secure user authentication.

Benefits of this strategy:

  • The key benefit is that group changes do not need to be made by both the network administrator and the Author-it administrator. By mapping the user groups you can hand over groups maintenance to the network administrator; which makes sense in a large installation with many networked resources.
  • Streamlines the task of setting up and maintaining security.
  • Makes the login process more secure: Active Directory Groups are used by the network to provide central authentication and authorization services, assigning access and rights to users and groups.
  • Users who have been mapped to a network directory group can log in to Author-it as a trusted user, bypassing the login window so they do not have to type a user name and password.

    Active Directories Diagram

How updates are mapped:

When changes are made to the network groups (for example, new users are added) the Author-it groups are also updated. Later if changes are made to groups, for example, a user is moved from one Active Directory Group to another group, Author-it updates the user's account. The process is:

  1. The user logs in and Author-it looks for the user in the last Active Directory group they were mapped to.
  2. When Author-it can't find the user in that group it takes them out of the Active Directory group profile.
  3. When it finds the user in another group it creates a new account, and assigns new permissions.

The mapping is enabled in Author-it Administrator

  • The Author-it users and groups are mapped to the network directory groups in the Author-it Administrator.