Lexzur
Child pages
  • SSO Integration with MS Active Directory on IIS




In order to activate LEXZUR SSO Integration with Microsoft Active Directory, the following configuration must be applied:

IIS Configuration

  1. Open Internet Information Services(IIS) Manager
  2. In the connection pane under “Server Name”, under “Sites”, under “Default Web Site”, select the correspondent application (i.e LEXZUR)
  3. After selecting the correspondent application IIS Manager middle pane will be titled by the selected application name containing different actions that can be performed on the application
  4. Select “Authentication”
    1. “Anonymous Authentication”: this option should be disabled
    2. “Windows Authentication”: this option should be enabled
  5. Open application folders tree
  6. Go to "webdav" and click on “Authentication”
    1. “Anonymous Authentication”: this option should be enabled
    2. “Windows Authentication”: this option should be disabled
  7. Go to "modules/api" and click on “Authentication”
    1. “Anonymous Authentication”: this option should be enabled
    2. “Windows Authentication”: this option should be disabled
  8. Go to "modules/outlook" and click on “Authentication”
    1. “Anonymous Authentication”: this option should be enabled
    2. “Windows Authentication”: this option should be disabled
  9. Go to "modules/A4G" and click on “Authentication”
    1. “Anonymous Authentication”: this option should be enabled
    2. “Windows Authentication”: this option should be disabled

End-User Configuration

Apply the following configurations on each IE 11 for end-users:

  1. Open IE, open the settings button and select internet options
  2. Go to security tab, and select Local intranet as the configurable zone
  3. Click on the button labeled “Sites” local intranet dialog box appear, click on button labeled “Advanced” add LEXZUR server IP(or Name) as one of the local intranet sites make sure to set the right protocol (http, https), if LEXZUR instance is not configured with SSL make sure to uncheck the option “Require server verification (https:) for all sites in this zone”
  4. In internet option security tab also click on the button labeled “Custom level” a dialog box appear labeled “Security Settings – Local Intranet Zone” scroll to the bottom under section labeled “User Authentication” under “Logon” select the option labeled “Automatic  logon only in Intranet zone”
  5. In internet option go to “Advanced” tab, in the setting list under “Security” section make sure to enable the option labeled “Enable Integrated Windows Authentication*”


Attention

  1. SSO feature is only supported on IE 11 and Edge browsers
  2. In case the user want to use Edge browser, the IE 11 settings should be applied as the Edge browser read the use the same configurations of IE 11


For more information about LEXZUR, kindly reach out to us at help@lexzur.com.

Thank you!

  • No labels

This page has no comments.


Need More Help?

Video Tutorials

Learn new skills through our comprehensive video tutorials.


Watch Now

Contact Us

Submit a request for assistance from our dedicated support team.


Get in Touch