Skip to content
View in the app

A better way to browse. Learn more.
FMForums.com

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

External Authentication - need help!

Versetti
in FileMaker Server v7 - v11

Featured Replies

  • Newbies

We are trying to run FM server 7 on a Windows 2003 Server in a 2000 AD domain. I tried to setup external authentication with no luck.

When we try to login a database, with a user in a group defined on the domain, we do see a login attempt (successful) to the network, however filemaker comes back with a error message not allowing the user access to the database. Even if its full permissions.

In contacting Filemaker tech support, they told me the domain group the user was apart of had to be A) a member of "login as a service" on the domain controller policy and : A Administrator of the machine filemaker server resides. Needless to say, I think Tech support is crazy. Surely it cant have those requirements, thats horid security. I told the tech, the above was not going to happen, find me a solution. Im on call back atm, but I doubt the'll even call back after how much grief I gave him over the above.

How have some of you got this to work? Has someone got external authenication to run on a 2003 server without doing the above? Or 2000?

Thanks

I agree - that's crazy, we had one setup in our office, and neither A) nor : were true.

Are your filemaker accounts setup properly? Each file needs to be setup (in FM7) to use External Authentication in Accounts/Privs, and the group name for the domain is used in place of the account name. [When each user logs in, their real account name is set after approval from the domain].

I read something about this somewhere that said nested groups (?) don't work well (might have been talking about Open Directory?). Sorry, I don't know much about that end.

  • Author
  • Newbies

The database has:

Account-----Type-----------------Priv Set

Salesman--External Server---Sales

Domain has:

Salesman - Domain global Group

We login as "Bob" (example), whose a member of salesmen for example. On the FM server, I see under event view/security that "Bob" has successfully loged in the network.

Gonna try some things with the priv set.

  • Author
  • Newbies

I loaded a Windows 2000 SP4 machine out of the domain with FM7 server, and used local groups. It works fine without any setings as mentioned above.

Its a 2003 server, or a domain issue. Going to try to add that computer to the domain and do further testing.

Create an account or sign in to comment
Go to topic listing

Important Information

By using this site, you agree to our Terms of Use.

I accept

Account

Navigation

Search

Search

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.