Windows Authentication and Navision

rigolo
Member Posts: 5
Hi,
currently we have most of our users setup as SQL database users on the Navision SQL server. However our security department would like us to move to NT authenication.
In the ideal world we would like to add people to a Windows Group (via our Active Directory system) and then he or she will be automatically given access to the relevent companies/forms etc in Navision.
Are there any pointers, how-to's or any other documentation that might help me set this up?
Thanks,
Hein Rigolo
currently we have most of our users setup as SQL database users on the Navision SQL server. However our security department would like us to move to NT authenication.
In the ideal world we would like to add people to a Windows Group (via our Active Directory system) and then he or she will be automatically given access to the relevent companies/forms etc in Navision.
Are there any pointers, how-to's or any other documentation that might help me set this up?
Thanks,
Hein Rigolo
0
Comments
-
Hi,
look up in to the Navision Online Help Doku.
And search for:
- Windows Users and Groups
- Creating Windows Logins
- Giving Roles to Windows Logins
- Security
...
Or Lookup in the Manual Installation and Systemmanagement from Navision Database Server, there is a chapter about Navision and Active Directory.(Oo)=*=(oO)0 -
we added an active directory group to win accounts in Navision and setup proper roles. it worked. users form the group could login and had apropriate roles...
but when user logs in, you will not see AD group id in stauts bar, but he's AD userid. and if you want to use userid through app, you will still have to define all users (by their user id) in G/L Setup Users table. and you will have to enter userids manually and not select form the list (remember that separate userids are not defined as win logins).
luckily validation still works - if you type in a userid that is not in group, error is shown.
this model is quite comprehensive, since you have userid/groups on AD and also userid/groups/roles in Navision.
after everything we ended with defining all users as Win logins (and not groups) and defining for each their roles.
The reason was also because DB administration and AD administration were done by different persons and changes through AD took a lot more time&effort.®obi
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯0 -
That's Right!!
My problem is the ID in Navision it's defined that CODE 10 characters, and my IDs in AD have more characters.
Can you help me?0 -
You enter the IDs under Tools/Security/Windows Logins, not Database Logins.Dean McCrae - Senior Software Developer, NAV Server & Tools
This posting is provided "AS IS" with no warranties, and confers no rights.0 -
Under Tools/Security/Windows Logins I added a Windows Group.
But if I want to work it correctly I have to created under Tools/Security/Database Conections the Id's users. These id's users have to be like id's pre-windows 2000 accounts.
In Navision, Our Id user field are CODE 10 long. And our pre-windows accounts are more that 10 long. And I can't modify pre-windows accounts.
Now do you understand my problem?0 -
Are you sure that you have the latest version.
In table 2000000002 User the User ID field is 20 char.s long.
In table 91 User Setup the User ID field is 20 char.s long.
Have a look into Codeunit 418 Login Management and see how Navision solves the problems with UserID.
This Codeunit is called from table 91 User ID triggers.
Regards,
Steen FiskerRegards,
Steen Fisker
Microsoft Certified Professional0 -
The version is 2.60 Financials.
In table 2000000002 User, the User ID field is 10 char.s long.
In table 2000000003 Member of, the User ID field is 10 char.s long.
In table 91 User Setup, the User ID field is 10 char.s long.
Don't exist Codeunit 418.
I think it's impossible solve this problem in my case. Only I can define the pre-windows User ID 10 char.s long. I do not want this solution because it can cause many problems in Windows.
Thanks of all ways.0 -
That's why the forum is called
Navision
Version >= 3.70 to avoid mixup's :P
But it still is pretty mixed up0 -
I can not upgrate Navision. I haven't power of this. Another suggestion?0
-
I Know it. In Navision Financials forum nobody discusses of Active Directory connection. So, I have proved luck here.0
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 116 Navision DOS
- 851 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 617 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 320 Dynamics CRM
- 111 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 990 SQL General
- 383 SQL Performance
- 34 SQL Tips & Tricks
- 35 Design Patterns (General & Best Practices)
- 1 Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.6K General
- 1.1K General Chat
- 1.6K Website
- 83 Testing
- 1.2K Download section
- 23 How Tos section
- 252 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions