ArchiveOne Enterprise, all versions
There are instances when you want to give permissions to users in a different domain to administer ArchiveOne in some way. For example, you may want a user in a child domain to be able to search the archive from the ArchiveOne Web Admin Console. This article explains how to add a user in a child domain to allow that user to be granted permissions in the ArchiveOne admin console.
HOW TO STEPS
From a Domain Controller,
- Open Active Directory Users and Computers (ADUC).
- Locate the 'ArchiveOneUsers' global security group in the root domain. This group is found by default in the 'Users' container.
- 'ArchiveOneUsers' is the default group name, but you may have chosen a different name which follows your naming convention.
- Right-click and select 'Properties'.
- Confirm the group type is a Global Security group.
- In ADUC, expand the child domain.
- In a suitable container, (e.g. 'Users'), right-click and select 'New' > 'Group'.
- Create a new Global Security group with the same name (by default 'ArchiveOneUsers') as the existing security group in the root domain and click 'OK'.
- Right-click the newly created group and select 'Properties'.
- On the Members tab, click 'Add' and select the user accounts from the child domain that you wish to grant ArchiveOne permissions to.
- Click 'OK' to save the group membership.
To confirm the users in the child domain now have the appropriate ArchiveOne permissions:
- Open the ArchiveOne Admin console.
- Expand the 'Roles and Users' node and select 'Users'.
- Confirm the users you added from the child domain are now listed here (they will appear in the form 'ChildDomain\Username').
Link To This Page: