Realm Setup
Create a New Realm
Click on Realms > Add a new Realm
Realm Configuration
Create a realm with the following key settings.
The settings below are just the critical settings necessary for this integration. For a full explanation of all the settings refer to the Administration & Configuration Console manual.
General Tab
- Realm Name: A unique name used to identify the realm
- Corners: 8
- Grid Mode: Grid Advanced
- Process Type: Netscaler
Option Tab
- Enable 2Form: check
- Target system support: Supports 2 form authentication
- Enable GridPIN: check
- Enable MyGrid: uncheck
- Force Layout to: pin
- Enable Password Change: check
Cryptographic Options Tab
- Default Cryptographic Key: Set to the appropriate key
- Proxy Cryptographic Key: Set to the appropriate key
Fields
- Username Field: login
- Username Field #2: login
- Password Field: passwd
- Password Field #2: passwd2
User Groups Tab
- Admin Groups: Set to the group of users who will be authorized to administer user accounts; perform account resets etc. If no value is specified, nobody will be allowed to administer other users in the Security Center.
- Authorized Groups: Set to the group of users who will be authorized to authenticate using GridGuard. If no group is specified, all valid AD users will be considered authorized
URLs Tab
- Authentication URL: Set to https://<access-gateway hostname>/cgi/login
- Logout URL: https://<access-gateway hostname>
- Login Failed URL: https://<access-gateway hostname>
- Locked out URL: https://<access-gateway hostname>
Stores
- Grid Store: Set as appropriate
- History Store: Set as appropriate
- Primary User Store: Set this to the GridGuard user store; either the Default-2Form-Userstore or the user store reference you created in GridGuard User Store & User Info Store Setup
- Username is UserID: uncheck
- Secondary User Store: Set this to the existing company user store created in Customer User Store Setup. This is typically Active Directory.
- Userinfo Store: Set this to the GridGuard user info store; either the Default-2Form-Userinfostore or the user store reference you created in GridGuard User Store & User Info Store Setup
- Nonce Store: Set as appropriate
- Session Store: Set as appropriate