Active Directory and FileMaker Server

Introduction

You can configure your FileMaker Server so that Athenaeum can accept log-ins using patron’s AD accounts rather than internal FileMaker accounts.

These credentials can be used when connecting to Athenaeum either with FileMaker Server or using the web “OPAC”.

note: Your FileMaker Server must be within the same domain as the AD server.

This is managed—like most FileMaker Server functions—via the FileMaker Server Admin Console.

Create your Active Directory Groups

Create three groups in your AD. The FileMaker Server and the groups need to be within the same domain:

  • lib_admin

  • lib_staff,

  • lib_student

(the names are case sensitive) and drop the users into the appropriate group.

Put the library administrator into the lib_admin group.

Put staff into lib_staff.

Drop students into lib_student.

Athenaeum does recognise other groups (e.g. with the prefix “res”) but these are all you need in most cases.

Configure FileMaker Server

Directory Service tab

Open the FileMaker Server Admin Console , navigate to the Database Server tab and then choose Directory Service.

directory service tab
directory service tab

Enter the Address of the AD server and the Entry point in the ou=…,dc-…,dc-…,etc. format.

Click the Test Directory Service Settings to confirm the settings are correct.

Click save.

Security Tab

Navigate to the security tab and choose “FileMaker and external server accounts” and click save.

Logging in

Desktop Client

You can now use your AD credentials to open Athenaeum using FileMaker Pro or FileMaker Go.

Web templates

Adjust the web templates config file and you can do the same at the Athenaeum web search.

On your web server, locate the Athenaeum web folder:

Edit configuration.php with a text editor and locate the line

config['allow_login']

and set that to true.

there are other settings there that you can change, but maybe only under advisement from SumWare Consulting.