Active Directory

Overview

SmartPTT supports user authorization based on user groups from an Active Directory and users added to those groups. With the support, SmartPTT significantly increases its compliance to cybersecurity standards and customer security policies.

Centralized (9.14.100)Non-Centralized (9.14.0)

Features

• Single domain support.
• Lightweight Directory Access Protocol (LDAP) support for communications with Active Directory.
• User credentials validation over LDAP.
• User role identification based membership is pre-determined groups.
• User profile assignment based on membership in additional user groups.

Benefits

• Delegate user access control to authorized personnel of the organization. Avoid excessive communications on exceptional access control.
  • Grant/revoke user access.
  • Create new accounts.
• Ensure user policies are updated on SmartPTT in the same way as for other software applications in the organization.
  • Implement password expiration.
  • Modify password complexity requirements.

Requirements

• At least SmartPTT server hosts (including additional and backup servers) must be added to the Active Directory.
• All SmartPTT server hosts must be in the same domain.
• All AD users and AD user groups must be in the same domain.

Prerequisites

Explained in the dedicated article.

Setup

• Installing SmartPTT with AD Authorization
• Linking SmartPTT Profiles to Additional AD User Groups

Operations

• Logging on to the Configurator
• Logging on to the Dispatcher App

Limitations

Available in the dedicated article.

Changelog

9.14.100

• Introducing centralized authorization.

9.14

• Introducing the feature.

See Also

• Local Users and Groups
• Role-Based Access
• Password Policies
• Server Authentication