1 Reply Latest reply on Jun 15, 2009 9:49 AM by TSGal

    External Authentication of FMSA 10 with Windows Server 2008

    Enzen

      Title

      External Authentication of FMSA 10 with Windows Server 2008

      Your post

      I have some questions about External Authentication of FMSA 10.

      We have a test domain called "FM1.TEST" and try to single sign on (SSO) to shared file on the FMSA 10 in this domain.

      I read the PDF document "Server External Authentication" and put the settings as it said, however, it did not work. Then, I set the environment as following, and we can open the shared file with SSO.

       

      So, questions are :

      Q1 : Is this right way of SSO?  Or, is there more appropriate settings?

      Q2 : Does SSO need the directory services settings on FMSA 10? 

       

      Environment -------------------------------------------------------------------------

      < Server 01>

      OS: Windows Server 2008 SP1 

      Role: AD Domain Controller of "FM1.TEST" domain

      Accounts added: 

      - FM1¥administrator (login the server 01 with this account)

      - FM1¥test01 (added for SSO process)

      Note:

      "test01" is included in "Domain Users" Group. 

       

      < Server 02>

      OS: Windows Server 2008 SP1 

      Role: FileMaker Server 10 Advanced installed (and member server of "FM1.TEST")

      Accounts added: 

      - FM1¥administrator (login the server 02 with this account)

       

        <<FMSA 10>>

        Setting of Admin Console: 

        - [Security] - [Client Authentication] - [FileMaker and External Server accounts] / checked

        - [FileMaker Pro Client] - [Directory Service] / all blank

       

          <<Shared File>>

          Account added: Users / [Full Access] access privilege

          Note:

          It seems that the account name has to  be the same as local group account name of < Server 02 >. (Not < Server 01 >)

       

      < Client 01>

      OS: Windows Vista Business SP1 

      Role: FMP 10 installed

      Accounts added: 

      - FM1¥test01 (login the Client 01 with this account)

      -------------------------------------------------------------------------------------------

       

      Any information (updated document, etc.) will be appreciated.

      Thanks,

       

      Enzen