<< Click to display Table of Contents >> Navigation: Components > Authentication Server > Configuration > Exclusion of clients based on a domain SID (self-hosted) |
In this section, you will learn how to restrict the registration of clients based on a domain.
You can use the “register_sid” setting to deny the registration of clients that are not in the specified domain (using the SID).
Open the configuration file "best_local.ini" on directory level. (Default directory: "C:\Program Files\Cordaware\best_srv\etc\best_local.ini")
Add the following entry to the "[best_ext]" section:
|
register_sid = S-1-5-21-407... (No value is set by default. This means that the function is deactivated). |
(If an entry with the key “register_sid” already exists, simply change the value to the respective SID.)
Save the configuration file and restart the service "Cordaware_bestinformed_best_srv" to apply the changes.
Exclude certain operating systems without domain affiliation
Not all operating systems can belong to a domain. To exclude operating systems from the “register_sid” function, you can use the “register_sid_os_exclude” function.
Open the configuration file "best_local.ini" on directory level. (Default directory: "C:\Program Files\Cordaware\best_srv\etc\best_local.ini")
Add the following entry to the "[best_ext]" section:
|
register_sid_os_exclude = ios,android (No value is set by default. This means that the function is deactivated). |
(If an entry with the key “register_sid_os_exclude” already exists, simply change the value to the comma-separated list of your desired operating systems).
The following values are possible:
Value |
Operating system |
windows |
Microsoft Windows |
linux |
All Linux distributions |
ios |
Apple iOS |
android |
Android |
darwin |
Apple macOS |
Save the configuration file and restart the service "Cordaware_bestinformed_best_srv" to apply the changes.