I’ve searched and hunted and have came up with nothing on how to set up windows authentication for BOWI/WEBI 6. Could you point me to any resource where the instructions are laid out.
Thanks
riveradi (BOB member since 2003-07-08)
If using the JSP version with Apache and Tomcat, I believe you need to use LDAP and Active Directory. I’m trying to assemble as much info as I can, not much available.
guihant (BOB member since 2002-08-15)
The BO Web site has 2 documents describing the LDAP integration; one for Windows - LDAP Security Connector Guide for Windows, and another for UNIX - LDAP Security Connector for UNIX. These docs step through the LDAP Configuration Tool, but barely touch on the Active Directory aspect.
guihant (BOB member since 2002-08-15)
I got stuck with this one too.
You can do it one of two ways, the NTLM type method that we had with Ver 5, or by integrating with Active Directory.
Both methods are setup by the LDAP Security Connector. There is documentation on the BusinessObjects Tech Support site the ‘LDAP Security Connector Guide for Windows’, but it only steps you through the Active Directory method.
For the NTLM method, start the LDAP Security Connector, and choose delegated as the Authentication Mode. When you get to the Authentication Source, you have 3 options, choose the first one ‘Repository’. Then simply finish the setup.
It seems to work OK in our Test environment so far.
Hayden_Gill 
(BOB member since 2002-08-15)
Hayden,
Have you come across any further issues with NTLM and Apache JSP that we should be aware of as I am about to proceed with this configuration?
Do you know if it is supported by BO as other posts seem to suggest it is not?
Thanks.
BOOZ (BOB member since 2003-08-28)
No issues that I’m aware of, not sure about support - check the par or ask tech support.
If you’re on 5.x at the moment though, stick with it until at least 6.5 is released. 6.1 should be avoided at all costs.
Hayden_Gill (BOB member since 2002-08-15)
Thanks Hayden,
Are you running in an Apache/Tomcat environment? If so what configuration changes did you make to the Apache server. I tried this afternoon and the webi login still appeared through IE?
Many thanks.
BOOZ (BOB member since 2003-08-28)
No it was only a test server
Do you mean it’s still showing through IIS ? You’d be better to uninstall IIS if that’s the case
Hayden_Gill 
(BOB member since 2002-08-15)
Hi Hayden,
We dont use IIS here we have Apache JSP as the Web server and Tomcat as the Application server.
I think this is why NTLM does not work as I have been informed that NTLM will only work with IIS? I tried yesterday with no luck. Can you please confrim your environment is IIS.
thanks.
BOOZ (BOB member since 2003-08-28)
It is now, but I was fairly sure I’d tested that configuration with Apache.
Are you running an NT4 domain or are you using AD ?
Hayden_Gill (BOB member since 2002-08-15)
Hi Hayden,
We ae using AD. I am going to test the LDAP conection with AD this afternoon.
Thanks for the Help.
BOOZ (BOB member since 2003-08-28)
All,
I tried to implement LDAP Windows Authentication however, the authentication works for my ZABO clients but not for my IE login process which still prompts me for a user name and password when I click the login button.
I have not configured anything on my Apache server or changed any code in my login page? Should I be changing these or should it just work?
Thanks for the help. 
BOOZ (BOB member since 2003-08-28)
I can now get LDAP authentication working for both full Client and Webi (IE) connection.
However, when we try to access the environment through the ZABO .rkey connection on the same machine that saw us successfully connect via full client and webi and we get the following error message:
“External security connector error. (Error: USR 00105)”
The client is using the new .rky and both server and client machine have the Security LDAP configuration tool installed locally? Does anyone have any ideas on what could be causing this problem.
Furthermore, I have found that we cannot connect to Application Foundation via LDAP. AF is on the same machine as our Webi installation but when you try to login the system brings back a login screen and when you enter the correct credentials the system returns the following message:
type Status report
message /scripts/login/loginError.jsp
description The requested resource (/scripts/login/loginError.jsp) is not available.
Is there a setting in AF we need to include for LDAP authentication?
Can anyone help?
BOOZ (BOB member since 2003-08-28)
I have Af working with LDAP with no changes
darrenjmarsden (BOB member since 2004-05-26)
Hi what environment are you using? My issue is with Tomcat and Apache?
BOOZ (BOB member since 2003-08-28)
6.1b on Tomcat/Apache Win 2000
darrenjmarsden (BOB member since 2004-05-26)
We are having issues with Tomcat/JSP and LDAP authentication as well. It would work after configuration, but then stop working after reboot. Tech. support gave us a new login.jsp. The new login.jsp works except for it doesn’t check the password validity. I can enter a blank or incorrect password and gain entry if the username matches.
System environment:
BO 6.1b
Windows 2000 SP4
Windows 2000 AD
SQL Server 2000 SP3a (Repository)
SQL Server 2000 SP3a (Data Store)
LDAP security: delegated/basic, Active Directory, External then Repository, Group matching, match on sAMAccountName.
Regards,
Jeff Binnig
Jeff Binnig (BOB member since 2004-07-23)