000035983 - How to setup RSA Archer for Windows authentication across multiple domains

Document created by RSA Customer Support Employee on Feb 2, 2018Last modified by RSA Customer Support Employee on Apr 19, 2019
Version 2Show Document
  • Comment0
  • View in full screen mode

Article Content

Article Number000035983
Applies ToRSA Product Set: Archer (On-Premise)
RSA Version/Condition: 5.x and 6.x
 
ResolutionFollow the instructions below.
  1. The Archer server needs to have a two-way trust relationship with all domains involved.
  2. Do not set a default domain in Archer. This is set under Administration -> Access Control -> LDAP Configurations -> Make sure that nothing is set in the default column.
  3. The domain name in Archer needs to be set to the USERDOMAIN for the user. To set this navigate to Administration -> Access Control -> LDAP Configurations -> select the LDAP configuration/domain -> Configuration tab.
User-added image

The USERDOMAIN value can be found from a user’s machine who is on the domain where authentication to RSA Archer needed following the steps below.
  1. Open the command prompt.
  2. Type set and hit enter.
  3. In the results look for the following: USERDOMAIN=
User-added image
 

Attachments

    Outcomes