DC 5.3.0 Debugging Active Directory
Open web.config from the Digizuite™ DAM Center installation folder on the webserver and set LogLevel to Debug. Detailed login records for users and related user groups are now listed in the Digizuite™ DAM Center log files.
Note: Setting LogLevel as debug causes logfile sizes to increase and can result in slow performance on the webserver. It is recommended to use debug for actual debugging only and not as standard LogLevel.
Example:
Here, it is the CN= part that is interesting.
E.g.: Debug 302012-09-10 10:32:21.010
Get Group member of for group CN=<ADGROUPNAME> {c641dc36-73c5-4346-8db6-8c143c5f028c},OU=<OU>,DC=<DOMAIN>,DC=com
The group name here will be listed as
<ADGROUPNAME> {c641dc36-73c5-4346-8db6-8c143c5f028c}
Each time a user logs in, information regarding the user position in the Active Directory and domain will be listed (CN+OU+DC). These are the information which is transferred to the Digizuite™ DAM Center and used to validate user and the affiliated groups.
CN = Common Name
OU = Organizational Unit
DC = Domain Context
Additional Note:
Please be aware that you cannot login to a DAM system using Single Signon from the Server hosting Active Directory, you must login from a remote PC/Laptop.