Administrator Guide
5. Click Sign In.
The imported Active Directory users can be activated or deactivated on the Users page by using the global administrator login.
If your account is deactivated, you cannot log in to the Wyse Management Suite Management portal.
NOTE: To import the users using LDAPS protocol, complete the following steps:
1. Import the AD Domain Server Root Certificate into Java Key Store Manually using the keytool. For example,
<C:\Program Files\DELL\WMS\jdk1.8.0_152\jre\bin>keytool.exe> -importcert -alias "WIN-
O358EA52H8H" -keystore "<C:\Program Files\DELL\WMS\jdk1.8.0_152\jre\lib\security
\cacerts>" -storepass changeit -file "Root Certificate Path"
2. Restart Tomcat service.
Configuring Active Directory Federation Services feature on public
cloud
You can configure Active Directory Federation Services (ADFS) on a public cloud.
Steps
1. On the Portal Admin page, under Console Settings, click Active Directory (AD).
2. Enter the Wyse Management Suite details to ADFS. To know the location details on the ADFS server where you must upload
the Wyse Management Suite .xml files, hover over the information (i) icon.
NOTE: To download the Wyse Management Suite .xml file, click the download link.
3. Set the Wyse Management Suite rules in ADFS. To know the custom claim rule details, hover over the information (i) icon.
NOTE:
To view the Wyse Management rules, click the Show WMS Rules link. You can also download the Wyse
Management Suite rules by clicking the link that is provided in the Wyse Management Suite Rules window.
4. To configure the ADFS details, click Add Configuration, and do the following:
NOTE: To allow tenants to follow the ADFS configuration, upload the ADFS metadata file.
a. To upload the .XML file stored on your thin client, click Load XML file.
The file is available at https://adfs.example.com/FederationMetadata/2007–06/
FederationMetadata.xml.
b. Enter the details of the entity ID and X.509 signing certificate in the respective boxes.
c. Enter the ADFS login URL address and the ADFS logout URL address in the respective boxes.
d. To enable tenants to configure Single Sign-On by using ADFS, select the Enable SSO login using ADFS check box. This
feature follows the Security Assertion and Markup Language (SAML) standard specification.
e. To validate the configuration information, click Test ADFS Login. This enables tenants to test their setup before saving.
NOTE: Tenants can activate/deactivate SSO login by using ADFS.
5. Click Save.
6. After you save the metadata file, click Update Configuration.
NOTE:
Tenants can log in and log out by using their AD credentials that are configured from their ADFS. You must
ensure that the AD users are imported to the Wyse Management Suite server. On the login page, click Sign in and enter
your domain credentials. You must provide the email address of your AD user and sign in. To import a user to the public
cloud , remote repository must be installed. For more information about the ADFS documentation, go to
Technet.microsoft.com.
Results
After the ADFS test connection is successful, import the users using AD connector present in the remote repository.
94
Portal administration