How to set a user authentication scheme
You can leverage your organization's existing authentication service in the Matrix. Set a user authentication scheme to command your Active Directory, LDAP, TACACS+, or other server, to perform authentication duties for the Matrix.
Most organizations use some type of server for user authentication. One of these authentication servers can be used by the Matrix to authenticate its users.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click an authentication scheme.
The system or service for managing user names, passwords, groups, and authentication, can be specified.
 
Local Exclusively managed within this system.
LDAP Any LDAP directory service (do not select for configuring Windows Active Directory)
Active Directory Windows Active Directory service
OMS Observer Analyzer Management Server appliance
RADIUS RADIUS authentication server
TACACS+ TACACS+ authentication server
 
4. Provide the information needed to connect to the authentication service.
Tooltips are available by pausing your pointer on each option, and the boxes highlight any missing details after you click Accept.
5. Click Save.
 
The Matrix now uses the selected authentication scheme for authenticating users.
 
How to authenticate locally
Selected by default, local authentication allows the Matrix to handle all users, groups, and permissions. This authentication scheme is especially useful if no third-party authentication server is available.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click Local.
4. Click Save.
 
The Matrix now uses local authentication for authenticating users.
 
How to authenticate using LDAP
Use LDAP authentication to allow an LDAP directory server to authenticate users.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click LDAP.
4. In the LDAP General Settings area:
a. In Server, type the server address.
b. In Port, type the port number.
c. In the Version list, click the protocol version.
d. In the Connection Security list, click a security type.
e. In Base DN, type the Base Distinguished Name.
The Base Distinguished Name is the point in the directory tree from which users are verified. This might be the root or some place lower in the tree to limit the number of users returned. Required.
f. In Bind DN, type the Bind Distinguished Name.
The Bind Distinguished Name (Bind DN) is required for importing user accounts from the LDAP server.
g. In Timeout in Seconds, type a value.
The duration a connection attempt waits before aborting.
5. In Server, type the address of the server.
6. Click Save.
 
The Matrix now uses LDAP for authenticating users.
 
How to authenticate using Active Directory
Use Active Directory authentication to allow a Windows Active Directory server to authenticate users.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click Active Directory.
4. Configure the settings shown.
5. Click Save.
 
The Matrix now uses Active Directory for authenticating users.
 
How to authenticate using OMS
Use OMS to manage and control who has access to Observer Platform products.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click OMS.
4. Configure the settings shown.
5. Click Save.
 
The Matrix now uses OMS for authenticating users.
 
How to authenticate using RADIUS
Use RADIUS authentication to allow a RADIUS server to authenticate users.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click RADIUS.
4. Configure the settings shown.
5. Click Save.
 
The Matrix now uses RADIUS for authenticating users.
 
How to authenticate using TACACS+
Use TACACS+ authentication to allow a TACACS+ server to authenticate users.
1. Starting in the dashboard, click System.
2. Click Authentication.
3. In the Authentication Scheme list, click TACACS+.
4. Configure the settings shown.
5. Click Save.
 
The Matrix now uses TACACS+ for authenticating users.