The Metasys Server or SCT computer that is handling user authentication and authorization must follow these requirements to use the Active Directory services feature as implemented on the Metasys system:
-
The Metasys Server and SCT computer must be joined to an Active Directory service domain. This is necessary for SSO login-free access to the Metasys system using Windows Integrated Authentication. If the Metasys Server and SCT are not joined to an Active Directory service domain, the Active Directory service user cannot use the login-free access to the Metasys Site Management Portal UI, but the Active Directory service user may still specify the Active Directory service user name, password, and domain at the login screen.
-
The Metasys Server and SCT computer must be configured to use Windows Integrated Authentication through IIS. Windows Integrated Authentication is configured by the Metasys installation program and is necessary for SSO login-free access to the Metasys system.
-
The Metasys Server and SCT computer must be configured to allow network access to the device and read/write access to the Metasys Single Sign-On web service to users of the Active Directory service.
-
The hard disk on the Metasys Server or SCT computer must be formatted for the NTFS file system, not the FAT file system. Hard drives that store SCT archive exports that are scheduled using SCTPro must also be formatted with NTFS.
- The Metasys Server and SCT computer must not be running other third-party applications that compete with the Metasys system for computer resources.
- Do not install Metasys on a Domain Controller. A Domain Controller provides the Active Directory service to network users and computers; stores directory data; and manages user and domain interactions including the login process, authentication, and directory searches.