The OpenLM system can connect with the Microsoft Active Directory and use information which is stored there, to offer wide range of additional capabilities as a result of it.

This article will explain how to control which servers an end user will be able see, when querying for license status information.

To begin with, we would like to demonstrate an "Out of the box" feature which is available for users once the configuration of OpenLM Server to connect with AD (Active Directory) is accomplished. The following picture is demonstrating how users can query the system to find all the information they need, about licenses in use by other users in the network.

Your first step is to set the connection between the OpenLM server and your organization Active Directory. The user name used to connect to AD must have permission level which will allow it to read users details.

Fill in your domain name user and password, and click the check button. The connection to AD will only work after OpenLM was successfully connected to the active directory.

Your second step is to determine which license servers the user should see when querying "License Information Status". This is an important tool for use when you operate multiple license servers but would like to hide available licenses, on license servers which are not permitted to specific users. It is necessary to build a dedicated tree in the AD with specific servers as branches inside (see picture). By creating the tree you will be able to select branches/servers that specific users are allowed to see and borrow licenses from. If a user is not listed (connected with) a server he will be able to see all the servers.

Define the following OpenLM organizational unit tree:

Under "allow_query_server" OU, add security groups in the following format: port_number@license_server_name. Add users (or groups) to the group with the server name on which you wish to grant query permissions.

For example, let us assume we have one license server (licserv1) serving two type of licenses on two ports, Matlab from Mathsoft on port 27003 and SolidWorks licenses on port 27006. Some of your users need access to the Matlab licenses and the other, to the SolidWorks licenses.
We will build two security groups under the OpenLM tree:
27003@licserv1
27006@licserv1

Once users are divided between the proper security groups, they will be limited to see and borrow licenses from those servers only. Users which will not be listed as part of any branch/server on the tree, will be able to query and borrow any license from any of the servers in your network.