Services
Printer-friendly version

AD Authentication

Active Directory (AD) is a Microsoft technology that provides authentication, directory, group and policy services.  All NetIDs that have been activated are in AD.

Developers can use AD to authenticate NetIDs or to retrieve basic information about a logged-in user, such as their name and what groups they are members of.  Only current members of the Yale community will have biographical information populated.  People that are no longer here, or have elected to not publish their information will have an account, but most of the data will be blank.

If you are creating a web-based application, the preferred authentication methods are either CAS or Federation via Shibboleth. Only use AD Authentication if your system cannot be configured to use CAS or Shibboleth.  Note that all three systems (AD, CAS and Shib) use the same NetID and Password. 

Who can use it?

Application Developers.

How much does it cost?

There is no cost for using this service.

How do I get it?

Your system must be capable of authenticating via Active Directory or LDAP.  Specific instructions on how to configure your system to do so will vary.

For the parameters necessary to connect your system to AD, contact INF Identity and Access Management at identity.management@yale.edu or via ServiceNow.

Where can I get help?

Contact the INF Identity and Access Management team at identity.management@yale.edu.

AD Authentication

Short title: 
AD Authentication
Icon class: 
icon-person
Short description: 

Provides NetID authentication services for applications that cannot use CAS or Federated authentication.

Active Directory (AD) is a Microsoft technology that provides authentication, directory, group and policy services.  All NetIDs that have been activated are in AD.

Developers can use AD to authenticate NetIDs or to retrieve basic information about a logged-in user, such as their name and what groups they are members of.  Only current members of the Yale community will have biographical information populated.  People that are no longer here, or have elected to not publish their information will have an account, but most of the data will be blank.

If you are creating a web-based application, the preferred authentication methods are either CAS or Federation via Shibboleth. Only use AD Authentication if your system cannot be configured to use CAS or Shibboleth.  Note that all three systems (AD, CAS and Shib) use the same NetID and Password. 

Who can use it?: 

Application Developers.

How much does it cost?: 

There is no cost for using this service.

How do I get it?: 

Your system must be capable of authenticating via Active Directory or LDAP.  Specific instructions on how to configure your system to do so will vary.

For the parameters necessary to connect your system to AD, contact INF Identity and Access Management at identity.management@yale.edu or via ServiceNow.

Where can I get help?: 

Contact the INF Identity and Access Management team at identity.management@yale.edu.