| Exercise 2 | Configuring FME Server for Active Directory (LDAP) | 
| Data | N/A | 
| Overall Goal | Connect FME Server to an existing Active Directory service | 
| Demonstrates | Configuring Active Directory in FME Server, Importing Users and Groups | 
While FME Server provides a means to control access to its components and items within by creating Users and Roles, your company has instructed you to connect FME Server to an existing Active Directory service. After this connection is completed, you will import existing users and groups and configure permissions.
| Sister Intuitive says... | 
| Due to security requirements and restrictions it may not be possible to complete this exercise. Instead, please watch this video demonstrating the exercise. | 
1) Connect to FME Server 
Open the FME Server web interface, either through the web interface option on the Windows Start Menu or directly in your web browser (http://localhost/fmeserver), and log in using the username and password admin. 
Click Security, under the Admin heading on the left sidebar, and then select Active Directory.
2) Create Connection to Active Directory 
By creating a new connection, you can incorporate your organization’s Active Directory users and groups into your FME Server security configuration.
To get started, select New to open the Create New Server Connection page.
Enter the following information:
- Name: FME Active Directory
- Host: dc.fme.com
- Port: 389
- Domain Search User: DC\Administrator
- Domain Search Password: dcAdmin2017
Click OK to save the new Active Directory connection. You will be returned to the Active Directory page. Wait for the Status to change from Yellow to Green, indicating that the connection is successful.
3) Import Users 
Now that the connection is established, select the Import Users icon to add users from the Active Directory connection.
On the Browse Users page, type in mvector and press Enter. Select Miss Vector's user and click Import.
A notification will appear in the top right of the web browser window to indicate that the user was successfully imported.
Note: If Miss Vector belonged to any Active Directory groups, we could have instead imported that as an FME Server Role – and all users that are a member of would be imported automatically.
4) Configure User Permissions 
After the Active Directory user is imported to FME Server, you must configure the permissions.
Select Security > Users under the Admin heading on the left sidebar of the FME Server web interface. Click on the Miss Vector user that was just created to open the Edit User page.
Click in the text box area for Assigned Security Roles and select fmeauthor. Notice all the inherited permissions from the fmeauthor Role that are now selected.
Select OK at the bottom to apply the changes.
5) Test the New User Account
Test that the import and assigning permissions was successful by logging into FME Server as Miss Vector.
Either logout of the admin account or open a new private browsing window, and login using the credentials below:
- Username: mvector
- Password: dcFME2017
| CONGRATULATIONS! | 
| By completing this exercise you have learned how to: 
 |