Active Directory Configuration

In order for Active Directory Login to function, the machine acting as the TimeForce Web Server must have access to the LDAP Server.

Internet Information Services (IIS)

Internet Information Services (IIS) must be configured to allow for Active Directory login.
Note: IIS instructions vary slightly depending on the Operating System that you are using.

1. From the Windows Control Panel, click on "Administrative Tools" and then on "Internet Information Services."

2. From the tree-directory on the left-hand side of the screen, browse to the "qqest" directory. Right-click on the directory and select Properties.

3. From the qqest Properties window, click on the "Directory Secuirty" tab at the top of the screen.

4. The "Anonymous access and authentication control" section appears at the top of the screen. Click on the [EDIT] icon. The Authentication Methods screen appears.

5. Uncheck the "Anonymous access" setting at the top of the screen. Put a check mark in the "Integrated Windows Authentication" setting at the bottom of the screen.

6. Click on the [OK] icon. You are brought back to the Properties screen. Click on [OK] again.

You can now exit Internet Information Services.

File Directory Access

In order to create and save reports and exports in the TimeForce system, you must ensure that the Active Directory users have access to the appropriate TimeForce folders.

Any user who will be generating reports or exports in the TimeForce system must be given "Read/Write" access to the following directories and sub-directories:

• C:\Inetpub\wwwroot\qqest\Downloads\

• C:\Inetpub\wwwroot\qqest\Photos

You are now ready to configure the TimeForce system for Active Directory login.