ID Manager Employee Sponsorship

  • 1
  • Question
  • Updated 3 years ago
Hi,

I'm looking to setup the AD auth for Employee sponsorship within ID manager however the help documentation is a little confusing. Do you need to configure both the Aerohive radius tunnel and the SAML setting or will it work with just one of the two?

We currently have an Aerohive AP joined to the AD acting as a radius server and from the help that would seem to be all we need. This seems far to easy though!

The AD group is added to ID manager

Any help would be appreciated

Thanks

Tom
Photo of Tom Stone

Tom Stone

  • 7 Posts
  • 0 Reply Likes

Posted 3 years ago

  • 1
Photo of John Hanay

John Hanay

  • 38 Posts
  • 8 Reply Likes
You only need to implement one of the methods, either Aerohive Radius Tunnel or SAML.
Photo of Tom Stone

Tom Stone

  • 7 Posts
  • 0 Reply Likes
Thanks John, any debugging we can do? At the moment when trying to sign in to the ID manager portal with an AD account we get an error message about unknown home server. Do we need to make any other changes in Hive Manager?
Photo of John Hanay

John Hanay

  • 38 Posts
  • 8 Reply Likes
The Aerohive Radius Tunnel requires our backend systems to have knowledge of the domain, i.e. Aerohive.com. This is referred to as the Claimed Domain.

The Claimed Domain will be shown in the Subscription page...Configuration > ID Manager Settings > Subscription > Directory Integration ...Enabled for domain "..."

This needs to match your AD Domain.  

If it does not match, then you need to submit a Support Ticket asking them to change the domain associated with ID Manager. 
Photo of Tom Stone

Tom Stone

  • 7 Posts
  • 0 Reply Likes
That's great thanks John, I don't believe that information is in the help anywhere? I'll give that a go and let you know! Thanks
Photo of Tom Stone

Tom Stone

  • 7 Posts
  • 0 Reply Likes
Hi John, just checked and it does match. How does it map back to the AD domain in Hive Manager? What else should I be checking?

Thanks
Photo of Tom Stone

Tom Stone

  • 7 Posts
  • 0 Reply Likes
Here's the error i get at the ID manager login page:

"Cannot find your integrated home directory, employee authentication failed. Please check the channel between your home directory and ID Manager authentication gateway."