Table Of Contents

Integrating InsightCM with Windows Active Directory

Last Modified: August 30, 2021

Integrate InsightCM with your Windows Active Directory to require users to log in with Windows account credentials.

Complete the following steps to enable LDAP on your browser.

  1. In File Explorer, navigate to the following location:
    C:\ProgramData\National Instruments\InsightCM 3.0\Auth
  2. Open the LoginAuth.json file in a text file editor.
  3. Modify each line category according to a Windows account in your organization.

    Do not set DisableBuiltinAccounts to true until after you assign your Windows credentials to an InsightCM role. You will be unable to log in because your credentials lack the necessary permissions.


    InsightCM uses the DirectoryEntry class to facilitate the LDAP connection. In the LoginAuth.json file, LdapServiceAccountUserName and LdapServiceAccountPassword are the username and password by the DirectoryEntry class. If you define an LdapDomainName, InsightCM adds it followed by a backslash to the beginning of the username. The LdapConnectionString is used as the path in the DirectoryEntry class. See the example below.

  4. Save the changes you made to the file.
  5. Log into the web application with the Windows account used to modify the LoginAuth.json file.
  "DisableBuiltinAccounts": false,
  "LdapConnectionString": "LDAP://,DC=ICM,DC=COM",
  "LdapDomainName": "",
  "LdapUsernameFilterToken": "sAMAccountName",
  "SessionTimeoutMinutes": 7200,
  "LdapServiceAccountUserName": "Administrator",
  "LdapServiceAccountPassword": "SecretPassword"
Now that users are required to log in with their Windows credentials, assign roles and permissions to each Windows user. After adding Windows Active Directory users to InsightCM roles, disable the built-in accounts and remove the stored LDAP username and password in the .json file.

See Setting up Email Alarm Notifications for password format requirements.

Recently Viewed Topics