Connect to a domain using a specific user
kbt156532
PRODUCTObjective
Specify credentials connecting to ADBefore You Begin
By default, the K2 service account is used to connect to other domains in a multi-domain environment. In situations wherein a separate account has to be used to query users or groups from other domains, you may specify the credentials on the corresponding entry in the [HostServer].[SecurityLabel] table inside the K2 database.
How-to Steps
On the RoleInit column of the K2 security label, you will see a DataSource configured for each of the domains configured in K2. For example,
<init>ADCache=10;ResolveNestedGroups=False;IgnoreForeignPrincipals=False; IgnoreUserGroups=False;MultiDomain=True;
DataSources=<DataSources> <
DataSource Path="LDAP://DC=DENALLIX,DC=COM" NetBiosName="DLX"/> <
DataSource Path="LDAP://DC=EXTERNALDOMAIN,DC=COM" NetBiosName="EXT"
/> </DataSources>
</init>
...
</roleprovider>
Adding the UserName and Password properties should allow K2 to connect to the domain under the context of this user's credentials:
DataSource Path="LDAP://DC=EXTERNALDOMAIN,DC=COM" NetBiosName="EXT" UserName="[username]" Password="[password]"