Connecting to the active directory

The AGW can connect to the AD using LDAPS. The domain controller is entered under ‘System Config’. The name or IP address can be used for this purpose. The fingerprint of the DC is determined by the AGW itself after a few minutes. The AGW can be configured to use LDAPS instead of LDAP.

LDAPS und AD Fingerprint

Authentication Setup

By default, "Authentication NOT Configured" is displayed under Authentication Setup. Authentication Setup - Not configured

For configuration, select "Join Kerberos" from the drop-down menu as the next step.

An LDAP read-only user is required to read the OU and AD group attributes after successful authentication of the user with the Kerberos ticket.

The AD credentials are only for the domain join.

Authentication Setup - Kerberos

If the join is successful when saving, the status should change and Kerberos should be active.

Authentication Setup - Kerberos

After joining the AGW, it can be seen in the AD under "Computers". Please do not move the AGW. Furthermore, the properties should be configured according to Chapter 5.1.

As a further step for successful Kerberos configuration, all browsers must be configured according to Chapter 6!

HIN AGW User Manual for version 3.1.65

Connecting to the active directory