LDAP integration after Windows upgrade

If you upgrade Windows BigFix, the Active Directory solution is kept for compatibility with the existing environment.

Warning: When passing from the legacy mode (UseLegacyADLogin = 1) to the new Web Reports working mode (UseLegacyADLogin = 0), the data remains in the database but it will no longer be accessible by the old AD/LDAP operator definitions, unless it is public data. Therefore, in addition to the steps described below, it is required to manually create new AD/LDAP operators and not public data (i.e. reports, filters, favorites) and eventually update the scheduled activities and the user email. In the same way, AD/LDAP operators and not public data visible with UseLegacyADLogin set to 0 are not available when returning to the legacy mode.

To switch to the new Web Reports and LDAP integration functionality, perform the following steps:

  1. Log in to Web Reports.
  2. From User Management remove all the Active Directory users.
  3. Change the BES Web Report Server service from Active Directory account to Local System account.
  4. Set UseLegacyADLogin value in HKLM\Software\WOW6432Node\BigFix\Enterprise Server\BESReports from 1 to 0.
  5. Restart the BES Web Report Server service.
  6. From the console, add Active Directory or LDAP by selecting Tool -> Add LDAP Directory.
  7. Log in to Web Reports and from User Management assign Web Reports roles to LDAP users and groups. For more information see Assigning a Web Reports role to LDAP users or groups.