Active Directory Authentication

   1. Make backup copy of /inetpub/wwwroot/coursecast/web.config
   2. Open web.config
   3. Search (Ctrl+f) and locate <connectionstrings> section
   4. Add the below line (making the appropriate changes to match your Active Directory):

<add name="ADConnectionString" connectionString="LDAP://yourdomaincontroller.yourdomain.local/OU=Users,OU=MyBusiness,DC=yourdomain,DC=com" />

   5. Search (Ctrl+f) and locate <providers>
   6. Add the below lines:

<add name="domain" description="Domain Name" connectionStringName="ADConnectionString" attributeMapUsername="sAMAccountName" enableSearchMethods="true" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />

   7.  The name attribute MUST equal the actual domain name (e.g. name="panopto") in order for AD group lookup to work properly, unless you specify the AD group search root elsewhere in your config file.
        The name attribute will be displayed as a prefix for users associated with the provider (e.g. panopto\username).

   8.  The description attribute is the display name for the provider (e.g. description="Panopto Domain"), and will show up in provider drop down lists.

   9. You can make the AD provider the default provider for new users logging in by setting the defaultProvider attribute on the <membership> element to the provider name (e.g. <membership defaultProvider="panopto">).

   10. Save and close web.config.

   11. A drop down will now be displayed on the login page, allowing you to select which provider to log in with.
        There is no need to specify the domain prefix when entering Active Directory credentials.  For example, enter username rather than panopto\username or username@panopto.com.

   12. (Optional) If you need to specify a username/password for the connection to Active Directory, add the connectionUsername and connectionPassword attributes as shown below:

<add name="domain" description="Domain Name" connectionStringName="ADConnectionString" connectionUsername="UserWithAppropriateRights" connectionPassword="PasswordForUser" attributeMapUsername="sAMAccountName" enableSearchMethods="true" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />

 See below for example of web.config:

<connectionStrings>
    <add name="Panopto.Data.Properties.Settings.PanoptoDBConnectionString" connectionString="Data Source=.\SQLEXPRESS;Integrated Security=True;Initial Catalog=PanoptoDB_2" providerName="System.Data.SqlClient" />
    <add name="Panopto.Data.Analytics.Properties.Settings.PanoptoAnalyticsConnectionString" connectionString="Data Source=.\SQLEXPRESS;Integrated Security=True;Initial Catalog=PanoptoAnalytics" providerName="System.Data.SqlClient" />
    <add name="ADConnectionString" connectionString="LDAP://yourdomaincontroller.yourdomain.local/OU=Users,OU=MyBusiness,DC=yourdomain,DC=com" />
</connectionStrings>
<system.web>
    <!-- This is required to permit the PPT uploader to accept large files -->
    <httpRuntime maxRequestLength="65536" />
    <pages>
        <controls>
            <add tagPrefix="asp" namespace="System.Web.UI" assembly="System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
            <add tagPrefix="asp" namespace="System.Web.UI.WebControls" assembly="System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
            <add tagPrefix="pan" src="~/Controls/AclManager.ascx" tagName="AclManager" />
            <add tagPrefix="pan" src="~/Controls/EditableLabel.ascx" tagName="EditableLabel" />
            <add tagPrefix="pan" src="~/Controls/PanoptoLogo.ascx" tagName="PanoptoLogo" />
            <add tagPrefix="pan" src="~/Controls/WebUserControl.ascx" tagName="WebUserControl" />
            <add tagPrefix="pan" src="~/Controls/FusionChart/FusionChart.ascx" tagName="FusionChart" />
            <add tagPrefix="pan" src="~/Controls/TabBar.ascx" tagName="TabBar" />
            <add tagPrefix="pan" src="~/Controls/SessionGroupChooser.ascx" tagName="SessionGroupChooser" />
            <add tagPrefix="pan" src="~/Controls/SessionChooser.ascx" tagName="SessionChooser" />
            <add tagPrefix="ajaxToolkit" namespace="AjaxControlToolkit" assembly="AjaxControlToolkit" />
        </controls>
    </pages>
    <membership defaultProvider="domain">
        <providers>
            <clear />
            <add name="CourseCast" description="CourseCast" connectionStringName="Panopto.Data.Properties.Settings.PanoptoDBConnectionString" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" applicationName="/" requiresUniqueEmail="false" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" passwordStrengthRegularExpression="" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />
            <!-- NOTE: The name of the PanoptoDBAdminMembershipProvider below must not change in order for it to be properly recognized by the system. -->
            <add name="PanoptoDBAdminMembershipProvider" connectionStringName="Panopto.Data.Properties.Settings.PanoptoDBConnectionString" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="false" applicationName="/" requiresUniqueEmail="false" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" passwordStrengthRegularExpression="" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />
            <add name="domain" description="Domain Name" connectionStringName="ADConnectionString" attributeMapUsername="sAMAccountName" enableSearchMethods="true" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />
        </providers>
    </membership>
    ...