I have created an AD/Internal Hybrid type User Source in my Gateway. Inside this User Source, I have created an "administrator" role and added my domain account, and everything is working fine.
Now, I want to create an internal account, like "IG-Admin," within the same User Source. However, I am unable to find how to set a password for this account.
Am I misunderstanding the concept of AD/Internal Hybrid? My understanding is that within the same User Source, I can create both AD accounts and internal accounts. Can someone help explain this to me? Thank you.
I suggest:
- Leave the Administrator account in the 'default' provider.
- Set the AD/Internal Hybrid to soft-failover to the default.
This way you can always log in to the Ignition gateway if the AD link fails or you mess up a setting and break the AD functionality (which would otherwise lock you out).
Make sure that 'Administrator' username and role in your AD setup is spelt exactly the same as in the default.
This is probably the only user you'll need in the default user source unless you want to create an account for someone outside of your organisation.
2 Likes
Yes.
The "hybrid" is that authentication comes from AD but roles come from Ignition.
What you are looking for is a soft failover configuration with two user sources, one AD, the other internal, as @Transistor explained.
1 Like