Hello everyone!
Help please to understand how can I user Grist + Win AD Authentication. Need I to use SAML? If “yes” can you show/give me detailed instruction?
Thank you!
1 Like
You need an IDP service, that provides SAML and use any LDAP (Active Directory) service for the user accounts.
An IDP is ADFS from Microsoft or Keycloak (https://keycloak.org). If you want to use Keycloak, this thread should give you a working configuration:
Better support for self-hosting login solution · Issue #44 · gristlabs/grist-core · GitHub
I’ve used authentik with grist and Win AD, it works very well and was not too complicated to set up.
If you still need instructions i could create a detailed walk through how i did it.
Hi @enthus1ast !
We would like to setup the Win AD with Grist. We are running the Girst omnibus on Docker from AWS store setup. Are you available to consult us (as a paid task)? If I’m correct, authentik is part of our setup. Email based SSO is already setup with Windows and Google but we would prefer to use actual AD user groups to control the access on Grist at individual document level.
Best,
Tomas Westerholm / Tietoa Finland Oy