Use Ldap with SSL, Using Single Sign-On | VBrick Systems V4.4.3

5.Right-click on Basic Authentication and Windows Authentication to Enable.

Using Single Sign-On

TTo use single-sign-on (and avoid username/password prompts), you must do one of the following

•Access the Portal Server by the alphabetical name (for example http://yourserver).

•Access the Portal Server by the IP address in which case you must also add the Portal

Server to the Local Intranet Zone (Internet Options > Security > Sites). This setting can be

pushed company-wide by an administrator using security policies.

•Change Internet Explorer's default settings to allow Automatic logon with current

username and password (Go to Internet Options > Security > Custom Level > User Authentication).

Use LDAP with SSL

Installing the Root Certificate

If the LDAP server requires SSL (Secure Sockets Layer) for encryption and authentication, you will need to install the certificate locally on the ETV Portal Server as a Trusted Root

Certificate Authority.

TTo install the root certificate locally on the ETV Portal Server as Trusted Root Certificate Authority:

1.Open Internet Explorer.

2.In the address bar type https://LDAPSERVER:636 where LDAPSERVER is the address of the LDAP Server associated with Certificate Authority (See Resolving Other Security Alerts on page 100) and 636 is the SSL port used to authenticate with the LDAP Server.

3.When Internet Explorer displays a Security Alert dialog (Internet Explorer 6) or certificate error screens (Internet Explorer 7), click View Certificate.

4.A Certificate window will open, click on the Certificate Path tab.

98	© 2009 VBrick Systems, Inc.

Image 110

VBrick Systems V4.4.3 manual Use Ldap with SSL, Using Single Sign-On

Contents

VBrick EtherneTV Portal Server Copyright About VBrick Systems Contents Server Administration Users and User Groups Configuring for SSL EtherneTV Backup Manual System Backup Portal Server v4.4.3 Admin Guide Organization Getting Help Font Conventions Xii Preface Introduction Portal Server Overview Server Requirements Desktop Requirements Copyright Protection MySQL Portal Server FeaturesEnd User Features Administrative Features ETV Portal Server Live Broadcasts ETV VOD Servers Portal Server ComponentsVBrick Encoders/Decoders ETV Internet-Based Servers Server Type Description Zone ETV IP Receiver ETV Network Video Recorder VB-PC Remote Controller Live Portal Server User Interface WM IP Receiver Portal Server InstallationAmino Set Top Box Download Components Operating System Browser Locked-Down Windows PCsMacintosh PCs Environment Supported Streams Closed Captions † Configuring a Macintosh for Tunneled StreamsLinux PCs Operating System Browser † Decoder Closed Captioning SupportPort Requirements Zone Ports Protocol Description UDP Installing Serial Numbers and License Files License File Description License Errors Admin Console Login Events. See the ETV Portal Server User Guide for Admin Console Options Option Description Internet Explorer 7.0 Configuration Enable Global Settings Global Assignments Submit. Example There will be an all hands meeting today at Only be done if advised by a VBrick technician or Network Problems to prevent end users from seeing unavailable Restrictions page or the Modify VOD Content page will \Program Files\VBrick\MCS\Presentations Previously configured machines. The settings here apply to Custom Fields Stream Restrictions Servers Add VOD Server Adding VOD-W, VOD-D, and NXG Servers Streaming Alias here, it overrides all other addresses LAN Configuring a QuickTime Streaming Server Http On the Mac QuickTime Server On the VBrick Portal Server Adding VOD-WM Servers Adding Publishing Points to a VOD-WM Server Using Secure FTP Add FTP Server Creating a VOD-WM FTP Server Creating a VOD-D FTP Server Add File Server Using Http Playback Using FTP Playback Content Location for Http Playback Add/Modify Video On Demand Content Folders Using Secure Playback Creating Subfolders VBrick Configuration VBricks Global Settings Advanced Settings Multimedia VBrick Configuration Control Devices Add Control Devices VBrick Systems, Inc Add User-Defined VBIRs Adding a SpitFire Model III Vbir Connect Control Devices Device Baud Rate Passthrough State Configure Control DevicesDevice Connector IP Receivers Update the Vbir Command SetLearning IR Commands Downloading External Libraries Go to Global Settings IP Receivers Configuring IP Receiver Timeout Recorders Synchronizing the Portal Server and the NVR Script Devices Scripts Creating a Script Select Add Scripts and click Submit Example Program three-digit device code. Here code is Add/Modify a URL for a Live Video Stream URLsFinding VBrick Parameters and Values Valid URL Examples Stream Type URL Syntax Add VOD Content Stream Type URL Syntax Add Non-VOD Content Priority Alert VBrick Systems, Inc Global Settings VBrick Systems, Inc Program Names Manage Playlists Access Logging Extended Logging Properties Using EthernetTV Reporter Using an Excel Spreadsheet Imported Access Log Zones 172.16.2.1-172.22.2.255 VBrick Systems, Inc Channel Guide Server AdministrationChannels Changing the Time Zone VBrick Systems, Inc Stations Add Custom Stations Add TV Stations Displayed in this list Add New Links Custom Programs Add Custom Programs Program End Type Edit Custom Programs Modify VOD ContentPurchased Content Expiration VBrick Systems, Inc Diagnostics Status Expired Content Log Access Control Use Ldap Database Server Administration Required by ETV Portal Server. Case sensitive. Must begin Use Ldap with Single Sign-On Configuring IIS for Single Sign-On Windows Server Select Web Server IIS and click Add Role Services Click on the Authentication option for the server Using Single Sign-On Use Ldap with SSL Click Browse Use RSA Authentication Resolving Other Security Alerts Configuring the Group ID Live Presentations Resource Groups UsersUser Groups Help About Logout 106 User-Related Definitions Users and User GroupsOverview Configuring Users and User Groups Setup and Configure ETV Components Choose an Authentication Method VBrick Database Create User Groups on the Portal ServerCreate Resource Groups on the Portal Server Ldap Directory Server Assign Resources to Users or User Groups Configuring UsersCreate Users on the ETV Portal Server 112 Add/Modify User Information Assigning Privileges to Users Add/Modify Users Group Assignments Allow Access to Specific FTP ServersAllow Access to Specific Recorder Servers Add/Modify Users Resource Group Assignments Allow Viewing by Content Type Allow Access to Specific VOD ServersAllow Access to Specific VOD Content Allow Content Publishing Allow VBrick Access Allow Content RecordingDefault Content Recording IPR Access Copyright Restrictions & Expiration Privileges Configuring User GroupsContent Edit Permissions Add/Modify Group Information Add/Modify Groups User Assignments Add/Modify Groups Resource Assignments Add/Modify Resource Group Information Add/Modify Users Resource Assignments IPR Authentication Authentication by PIN Authentication by Host Name or IP Address 122 Configuring for SSL Generate a Certificate Request Configuring SSL Windows ServerSSL Prerequisites Submit a Certificate Request Install the CertificateConfigure Portal Server Resources for SSL Configure Hardened SSL Check the box marked Require secure channel SSL and click OK Configure Non-Hardened SSL Restart the Windows Server Web Page Security Web Security 130 ETV Portal Server Admin Guide 131 132 ETV Portal Server Admin Guide 133 134 ETV Portal Server Admin Guide 135 136 ETV Portal Server Admin Guide 137 138 ETV Portal Server Admin Guide 139 140 Network Video Recording NVR Overview NVR Hardware NVR 10 Record Licenses NVR 40 Record Licenses Standard NVR NVR TypesNVR Performance Considerations Standalone NVR Configure a Standard NVR NVR InstallationNVR Configuration Synchronize the Portal Server and the NVR Using an NVR Configure a Standalone NVR Portal Server Schedule Record VBPresenter Working with Presentations Configuring MCS for VBPresenterConfigure an MCS FTP User Account Launching a Live Presentation Configure an MCS Presentation UserConfigure for Live Presentations Removing a Live Presentation Configure for Stored Presentations Launching a Stored Presentation 152 Auto Content Ingestion AutoIngest Content Example AutoIngest Content via XML ETV Portal Server Admin Guide 155 AutoIngestXML Modes Using the XML TemplateMode Description Tag Description Server. The format for this data is Removing MPEG-4 Closed Captions EtherneTV Backup ETV Backup Profiles Profile Name MCS Folder Location Set Profile IP Addresses Configuring ETV BackupEnter License Key Configure the Scheduler This step is important. Do not omit this step Reset Database Backup VersioningEnable the Warm Backup Server Test the Configuration ETV Portal Server Admin Guide 165 Turning a Warm Backup Server into a Live Server Bring a Failed Machine Back Online as a Primary Server Bring a Failed Machine Back Online as a Warm BackupBringing a Failed Machine Back Online Software Installation Connecting the Amino Amino Set Top Box Configuring the Amino Change the IP Address Live Broadcasts Configure a Direct Connection Configuring the Remote Control for a TVConfiguring the Amino for a Widescreen Set the TV Display Format TV Display Format Video Output 174 VOD-W Server Configuration Acns ConfigurationAcns Configuration Portal Server Configuration Acns Server Configuration Verify Installation Changing the Title and Header Image Rebranding the User InterfaceCustomizing the Portal Server Webpage Background Rebranding the Portal ServerPortal Server Header Image Header Search Bar Navigation Text Margins and BordersHeader Search Bar Background Header Search Bar Channel Guide Time Navigation Channel Guide Search TextBoxChannel Guide Background Search Area Channel Guide Program Menu Text Rebranding Other ETV Components VBrick IP Receiver STB List and Related Html NXG-to-VOD-W Content Migration Creating an Asset List Increase the Ingestion Rate Using the Migration ToolSample Asset List Run the Migration Tool To migrate video files to the VOD-W Source VoD Server Destination VoD Server Schedule Recover from Migration ErrorsVerifying the Migration 190 Purchased Content Ingestion Configuring IIS 192 Ingesting Content Configure a VOD-W Server Ingest Purchased Content To ingest purchased content to your VOD servers Backing Up the Database 196 Manual System Backup System Backup System Restore Streaming Service Workflow VBrick Internet Streaming VBrick Push Configuration Portal Server Hosting VBrick Announce Configuration Portal Server Admin Configuration Portal Server User Configuration Portal Server Scheduler Configuration