Configure Active Directory (Polaris only)

If Innovative hosts Vega for your library, you can connect to Active Directory (AD) to manage users. If you use Polaris and you self-host, you must complete the steps below to connect your Polaris installation with Vega Discover to manage users.

To configure Active Directory

  1. Configure your LDAPS connection with an SSL certificate.
  2. Create a Vega service account in AD to use as the bind credentials for the LDAPS connection.
  3. Create a Support ticket and request the static IPs for your Vega installation. Provide the following information:
    1. The distinguished name (DN) of the organizational unit (OU) where the library staff users reside.
    2. The DN of the service account (must contain the fully qualified domain name for the self-hosted AD).
    3. The service account password.
    4. The LDAPS connection hostname.
    5. (Optional) The DN of an AD group to restrict Vega access if users are spread across multiple OUs or if not all users should have access to Vega.
  4. Allow inbound connections from the provided Vega static IPs to your LDAPS connection on port TCP 636.
You must use the following attributes for your library staff accounts in Active Directory:
  • Username LDAP attribute (example: samAccountName)
  • First name LDAP attribute (example: GivenName)
  • Last name LDAP attribute example: SurName)
  • UUID LDAP attribute (if other than ob|ectGUID)
  • RDN LDAP attribute (example: CN)

Support will provide your Vega static IPs. When your configuration tasks are complete, we’ll complete your connection and alert you when you can use Active Directory in Vega.

See also