https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282853#M5414 <P>1) are you creating users manually or through AD sync ?</P><P>2) either case, look at the accounts tab for the user and there should be two logins defined . One being Defaulthauth with domain\user id and another one with web authentication domain with only user id.</P><P>3) The login with web authentication is used for Windows integrated authentication.</P><P>4) When a users try to open the link, (use google chrome, if you use i.e you have to make changes to accept IWA) , the keytab (if you use spn ) will be matched against realm to generate the token (once succesful ) .</P><P>Best,<BR />Sai Korrapati</P> Fri, 08 Jul 2016 02:54:45 GMT userid007 2016-07-08T02:54:45Z https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282089#M5380 <P>Hi,</P><P>&nbsp;</P><P>I am refering the following document perticularly section</P><P>Configuring Web Authentication Starting with the Second Maintenance Release for SAS 9.4</P><TABLE border="0" cellspacing="0" cellpadding="0"><TBODY><TR><TD><A href="http://support.sas.com/documentation/cdl/en/bimtag/68217/HTML/default/viewer.htm#n1bhp608f0hsoen10i1vi0p9l5f7.htm" target="_blank">http://support.sas.com/documentation/cdl/en/bimtag/68217/HTML/default/viewer.htm#n1bhp608f0hsoen10i1vi0p9l5f7.htm</A></TD></TR></TBODY></TABLE><P>I have made the changes as asked in the document but I am bit confuse in step 7 to 9,can any body help me out with these steps.</P><P>also I have sasdemo as LDAP user which is getting log in in SAS Mobile BI but for other users it is not happening.</P><P>&nbsp;</P><P>Thanks&amp;Regards</P><P>Nishant&nbsp;</P> Tue, 05 Jul 2016 06:57:46 GMT https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282089#M5380 nishukhawale 2016-07-05T06:57:46Z https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282537#M5408 <P>Steps 7-9 are important in order to get metadata identities set up for all of the users you're intending to access Web applications. &nbsp;You essentially assign them to a new authentication domain (web). &nbsp;They allow you to establish authorization settings for them. &nbsp;The sasdemo userid no doubt already exists in metadata, as that typically gets set up during initial deployment. &nbsp;Note that this section applies to the second maintenance of 9.4. &nbsp;In the third maintenance, SAS can create these metadata identities automatically upon successful Web authentication of a given user (covered in the ensuing section of the doc you cited).</P> <P>&nbsp;</P> <P>If you continue to have issues in setting this up, SAS Technical Support should be able to help.</P> Wed, 06 Jul 2016 19:47:25 GMT https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282537#M5408 Mark_sas 2016-07-06T19:47:25Z https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282853#M5414 <P>1) are you creating users manually or through AD sync ?</P><P>2) either case, look at the accounts tab for the user and there should be two logins defined . One being Defaulthauth with domain\user id and another one with web authentication domain with only user id.</P><P>3) The login with web authentication is used for Windows integrated authentication.</P><P>4) When a users try to open the link, (use google chrome, if you use i.e you have to make changes to accept IWA) , the keytab (if you use spn ) will be matched against realm to generate the token (once succesful ) .</P><P>Best,<BR />Sai Korrapati</P> Fri, 08 Jul 2016 02:54:45 GMT https://communities.sas.com/t5/Administration-and-Deployment/LDAP-User-login/m-p/282853#M5414 userid007 2016-07-08T02:54:45Z