SyferLock Help Center

Realm Setup

Create a New Realm

Create a New Realm

Click on Realms > Add a new Realm

Realm Configuration

Realm Configuration

Create a realm with the following key settings.

The settings below are just the critical settings necessary for this integration. For a full explanation of all the settings refer to the Administration & Configuration Console manual.

General Tab

  • Realm Name: A unique name used to identify the realm
  • Corners: 8
  • Grid Mode: Grid Advanced
  • Process Type: TokenAuth

Option Tab

  • Enable 2Form: check
  • Target system support: Supports 2 form authentication
  • Enable GridPIN: check
  • Enable MyGrid: uncheck
  • Force Layout to: pin
  • Enable Password Change: check

Cryptographic Options Tab

  • Default Cryptographic Key: Set to the appropriate key
  • Proxy Cryptographic Key: Set to the appropriate key

Fields

  • Username Field:  uname
  • Username Field #2:  uname
  • Password Field:  pwd
  • Password Field #2:  pwd1

User Groups Tab

  • Admin Groups: Set to the group of users who will be authorized to administer user accounts; perform account resets etc. If no value is specified, nobody will be allowed to administer other users in the Security Center.
  • Authorized Groups: Set to the group of users who will be authorized to authenticate using GridGuard. If no group is specified, all valid AD users will be considered authorized

URLs Tab

This assumes that the customizations are install at /web/array-ag

When GridGuard is sitting behind an Array AG reverse proxy the user will get a 404 error when redirected. 
The solution is uncommon but valid. When starting a URL in the URL section with '/' the app assumes the URL is constrained to that specific web app. This is an issue because sometime for deployments you have to refer to the server roots '/' and not the web app's root. 
WORKAROUND: 
add 'https:///' before the path. 
Example: https:///web/arrayag/array-login.php?<realm_name>&method=<method_name>&p=logout

 

Authentication URL: https://<site hostname>/prx/000/localhost/login

  • Logout URL: /web/array-ag/array-login.php?realm=<realm_name>&method=<method_name>&p=logout
  • Login Failed URL: /web/array-ag/array-login.php?realm=<realm_name>&method=<method_name>&p=failed
  • Locked out URL: /web/array-ag/array-login.php?realm=<realm_name>&method=<method_name>&p=logout

Stores

  • Grid Store: Set as appropriate
  • History Store: Set as appropriate
  • Primary User Store: Set this to the GridGuard user store; either the Default-2Form-Userstore or the user store reference you created in GridGuard User Store & User Info Store Setup
  • Username is UserID: uncheck
  • Secondary User Store: Set this to the existing company user store created in Customer User Store Setup.  This is typically Active Directory.
  • Userinfo Store: Set this to the GridGuard user info store; either the Default-2Form-Userinfostore or the user store reference you created in GridGuard User Store & User Info Store Setup
  • Nonce Store: Set as appropriate
  • Session Store: Set as appropriate
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk