Page Comparison

Html

<div id="fb-root"></div>
<script>(function(d, s, id) {
  var js, fjs = d.getElementsByTagName(s)[0];
  if (d.getElementById(id)) return;
  js = d.createElement(s); js.id = id;
  js.src = 'https://connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.11';
  fjs.parentNode.insertBefore(js, fjs);
}(document, 'script', 'facebook-jssdk'));</script>

...

Html

 <div class="lang-box-pdf">
	<div>
		<div class="google-lang">
			<div id="google_translate_element">
			</div>
			<script type="text/javascript">
					function googleTranslateElementInit() {
						new google.translate.TranslateElement({pageLanguage: 'en', includedLanguages: 'de,es,fr,it,nl', autoDisplay: false}, 'google_translate_element');
						}
			</script>
			<script type="text/javascript" src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
		</div>
		
		<div class="pdf-button">
			<a href="https://confluence.wildix.com/spaces/flyingpdf/pdfpageexport.action?pageId=38666412" alt="Convert to .pdf" title="Convert to .pdf"><img src="https://confluence.wildix.com/download/attachments/14549012/pdf-button-download-wildix-documentation.png"></a>
		</div>
	</div>
</div>

Info

This Guide describes how to set automatic Single Sign-On via Active Directory.

WMS Version: 5.X0 / 4.0X

Created: March 2019

Updated: May 2022

Permalink: https://confluence.wildix.com/x/rABOAg

Table of Contents

Step 1. Generate KeyTab file in Active Directory

...

The procedure works the same for Cloud PBX, Hardware and Virtual Machine PBXs. For Cloud PBX, PBX must access AD for sync user

...

only.

Choose an arbitrary FQDN to connect your PBX. Enter name in the following format:

[SERVER].[LOCAL-DOMAIN]

Example: pbx.mycompany.local

Note

Note: This address should resolve the PBX IP address.

Then, follow the steps below of this guide.

2. Go to Active Directory Users and Computers -> Computers

...

and create a new computer account

...

:

Note

Notes:

This account should not contain a user with the same name

...

note

.

Note:

It is recommended to avoid upper case.

...

3. Create KeyTab file associated to this computer and check spn (service principal name) binding to the computer account, run the following commands with Domain Admin privileges:

Code Block
ktpass -princ HTTP/some-name.example.com@EXAMPLE.COM -mapuser some-name$@EXAMPLE.COM -crypto ALL -ptype KRB5_NT_SRV_HST +rndpass -out d:\some-name.keytab Reset SOME-NAME$'s password [y/n]? y

where

some-name$@EXAMPLE.COM - the computer's name in the asset directory (with $)

+ rndpass - the password that is generated for the computer account, where the domain is written in capital letters

4. You can check that KeyTab / SPN is well associated with following command:

Code Block
setspn -Q HTTP/some-name.example.com

The correct result is: Existing SPN found
Bad result is: No SPN found/ More than one SPN found

Note
If HTTP / some-name.example.com is bound to several computers or users, authentication of Kerberos will not work

When KeyTab is generated, it appears on the disk - d: \ some-name.keytab:

Step 2. Upload KeyTab file to PBX

...

Versions Compared

Old Version 10

New Version 11

Key

Step 1. Generate KeyTab file in Active Directory

Step 2. Upload KeyTab file to PBX