AD LDS (ADAM) für Redaction vorbereiten
Einfach erklärt: Was ist AD LDS?
AD LDS (Active Directory Lightweight Directory Services) ist ein Windows-Dienst, der Benutzer- und Zugangsdaten verwalten kann. Docuflair nutzt AD LDS für die Redaction-Funktion (Schwärzung sensibler Daten in Dokumenten). Diese Anleitung beschreibt die Einrichtung von AD LDS als Voraussetzung für die Nutzung dieser Funktion.
Installation von AD LDS
AD LDS ist Bestandteil von Windows 10 Professional und Enterprise, sowie von allen Server Versionen. Durch Eingabe von optionalfeatures unter Start/Ausführen kann die Installation dieser optionalen Komponente gestartet werden.
Einrichtung und Konfiguration von AD LDS
CN=Docuflair,DC=Redaction,DC=COM
Install a unique instance of AD LDS.
Instance name: Docuflair
Computers will connect to this instance of AD LDS using the following ports:
LDAP port: 389
SSL port: 636
AD LDS replication will use Negotiate authentication.
Store AD LDS data files in the following location:
C:\Program Files\Microsoft ADAM\Docuflair\data
Store AD LDS log files in the following location:
C:\Program Files\Microsoft ADAM\Docuflair\data
Run AD LDS using the following account:
NT AUTHORITY\NetworkService
Set up the following account to administer AD LDS:
TRITON\Julius
Create the following application directory partition:
CN=Docuflair,DC=Redaction,DC=COM
Import these LDIF files:
MS-User.LDF
General Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| First Name | givenName | John |
| Initials | initials | JS |
| Last Name | sn | Smith |
| Display Name | displayName | John Smith |
| Description | description | Sales Manager |
| Office | physicalDeliveryOfficeName | London Office |
| Telephone Number | telephoneNumber | 949-555-1234 |
| Telephone Number (Other) | otherTelephone | 949-555-1234 |
| E-mail-Addresses | JSmith@domain.com | |
| Web Page | wWWHomePage | www.johnsmith.com |
| Web Page (Other) | url | www.Company.net |
| Common Name | CN | John Smith |
Address Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| Street | streetAddress | 10 The Road |
| PO Box | postOfficeBox | Po Box 1 |
| City | l (Lowercase L) | NewLondon |
| State/Province | st | New York |
| Zip/Postal Code | postalCode | 61441 |
| Country Name | c | GB, DE, US etc |
Group Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| Group | memberOf | CN=Managers,OU=Sales,DC=Domain,DC=Com |
Account Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| User Logon Name | userPrincipalName | JSmith@domain.com |
| User Logon Name (Pre W2K) | sAMAccountName | JSmith |
Telephones Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| Home | homePhone | 949-555-1234 |
| Home (Other) | otherHomePhone | 949-555-1234 |
| Pager | pager | 949-555-1234 |
| Pager (Other) | otherPager | 949-555-1234 |
| Mobile | mobile | 949-555-1234 |
| Mobile (Other) | otherMobile | 949-555-1234 |
| Fax | facsimileTelephoneNumber | 949-555-1234 |
| Fax (Other) | otherFacsimile | 949-555-1234 |
| Telephone Number | telephoneNumber | 949-555-1234 |
| IP Phone | ipPhone | 949-555-1234 |
| IP Phone (Other) | otherIpPhone | 949-555-1234 |
| Notes | info | General information |
Organization Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| Title | title | Manager |
| Department | department | Sales |
| Company | company | Big Corp |
| Manager | manager | CN=SJobs,OU=Managers,DC=Domain,DC=Com |
| Employee ID | employeeID | |
| Employee Type | employeeType | |
| Employee Number | employeeNumber | |
| Car License | carLicense | |
| Division | division | |
| Room Number | roomNumber |
Exchange Tab
| Friendly Name | Attribute Name | Example |
|---|---|---|
| Alias | mailNickname | jsmith |
| Simple Display Name | displayNamePrintable | James Smith |
| Email addresses | proxyAddresses | SMTP:jsmith@domain.com |
Konfiguration ADAM:
