Skip to content

Switching from SAML to Windows Authentication Mode

You can switch the File Access Manager authentication mode from SAML, which uses a local identity provider, to Windows username and password method by changing the setup in the File Access Manager installer.

Complete the following steps to switch authentication mode:

  1. Set the Authentication Mode in the File Access Manager Installer.

    1. Open the File Access Manager installer on the server where the Web Client and IIS are installed.
    2. Navigate to the Select web authentication mode step.
    3. Change the option from SAML to Windows.
    4. Select Next through the installation wizard until you reach the end, and then select Finish.
  2. Change the IIS Authentication Method.

    1. Open IIS Manager.
    2. In the tree on the left-hand side, navigate to Current Server > Sites > Default Web Site.
    3. Select on the cdn folder, then in the IIS section, select Authentication.
    4. Right-select and select Anonymous Authentication > Disable.
    5. Right-select and select Windows Authentication > Enable.
    6. Repeat the above steps for the following folders/locations:
      • Identityiqfam > v1
      • Identityiqfam > v2
      • SecurityIQBiz
      • SiqApi
    7. Restart IIS to apply changes.
  3. Create an Active Directory Identity Collector by navigating to Application > Configuration > Permission Collection > Identity Collectors.

  4. Set a schedule for this identity collector.
  5. Navigate to Applications > Configuration > General Configuration > Authentication Store, and select the identity collector you created from the dropdown list.

    This will now configure the Active Directory as the authentication store.

  6. Run the scheduled task for the authentication store you created above.

  7. Clear the cache of previous sessions in your browser.
  8. Open the Website and sign in with any user from the Active Directory authentication store.
  9. The SAML Login option and the Logout button will no longer appear in the system.

By following these steps, you will have successfully switched the authentication method to Windows Authentication.