Microsoft Active Directory (AD) service provides a namespace for resolving a wide range of objects including user accounts. An Active Directory configuration for web applications deployed on PAS for OpenEdge allows authentication using a Windows user@domain type ID. It locates and validates users from the user object's userPrincipalName field. It obtains granted roles from the user object's memberOf field.

To implement the Active Directory security model, add the following setting in the Security and authentication models section of the oeablSecurity.properties file:
http.all.authmanager=ad

You configure AD in the Microsoft Active Directory user account services section of the oeablSecurity.properties file. See the oeablSecurity.properties.README file for an explanation of AD properties and their valid settings.

Note: If more configuration detail is needed, use the full LDAP configuration described in the LDAP Authentication Manager section of the oeablSecurity.properties.README file.