Login areas and Active Directory (AD) users & groups
Posted by Andre Kuehnemund, Last modified by Andre Kuehnemund on 20 August 2015 10:15

Q: On a Windows based P5 server, customer wished to restrict access to an archive index via Active Directory (AD) users that were members of an Active Directory (AD) group. This did not work.

A: The solution was to create a local group and make the AD user(s) member(s) of that group, then assign the local group to the desired login area.


The above only applies to Windows based P5 servers. AD users authenticating to a Linux or Mac based P5 server authenticate via PAM - which works differently.

(0 vote(s))
Not helpful

Comments (2)
Jørgen Scheel
08 November 2016 18:31
Please explain the practical steps to achieve this with a windows server. We wish the access to be based on AD groups for P5.
Andre Kuehnemund
28 December 2016 17:47
AD users must be made a member of a local group on the P5 server. Access in P5 is granted through login areas. Login areas can be assigned to groups, not users. Therefore, for example, if you would like an AD user to have administrative access to the P5 server, they must be made a member of the local Administrators group.
Post a new comment
Full Name:
CAPTCHA Verification 
Please enter the text you see in the image into the textbox below (we use this to prevent automated submissions).