Skip Navigation LinksALVAO 11.0ALVAO Asset ManagementImplementation of the system in the organisationUser managementUser authentication in applicationsUser authentication using Active Directory Skip Navigation Links.

User authentication using Active Directory

Users who have an Active Directory (AD) account can log in to Alvao applications:

  • Windows Integrated Authentication - the user account under which the user is currently logged into Windows on that computer is used for authentication. The user no longer enters any login credentials into Alvao applications.
  • Form - when running Alvao applications, the user enters their username and password stored in AD.

Read Users from Active Directory

In order for a user to be authenticated in Alvao using AD, their account must first be loaded from AD into Alvao using the ImportAD utility. We recommend that users import into Alvao on a regular basis, for example, by scheduling a task on the server to run every hour.

When first loaded, Alvao will create all users and groups according to the specified LDAP path. The next time it is loaded, only new users and groups are created, and the information about existing users and groups is updated. Users and groups removed from AD are not automatically removed from Alvao. If you load users from the entire AD, some auxiliary user accounts such as IUSR_..., IWAM_... will also be loaded into Alvao. etc. It is recommended to hide these auxiliary accounts with the Hide command. If you were to remove these users with Remove, they would be re-created the next time they are loaded.

Manually retrieve users from Active Directory

To retrieve users once, run a scheduled task created on the server or run the ImportAD utility directly from the command line.


On the WebApp - Administration - Settings - Active Directory page, set the AD authentication parameters.


Did not find what you were looking for? Ask our technical support team.