 in Apache user community, which means I tried to promote the Apache projects to some clients in China. So what is Open Meetings? Probably some of you already heard it before, right? It is open source and on-conference tool, just like Zoom, like Teams, like WebEx or Teams meeting anyway, but only Apache Open Meetings is fully open source and the Wi-Fi browser and also it support mobile. So here are some screenshots I took from the platform because I don't want to waste your time to just get logged in to show all this stuff. So what is the role-based access control mechanism with MSAD directory and Apache Open Meetings? I do this configuration, it's better than the following features. For the host machine, I use the women wire workstation 16 Pro installed on Windows 11 and I use the two machine. This is a trivial of my AD configuration. You can see on the top is forest, below that is your domain, in your configuration you should change the domain to your domain. And you can see on the top of the tree there is an organization unit, CS, which is my organization unit in the server, there are some entries. On the right side you can see some basic concepts, first one is distinguished name and the second one is domain component and the third one is organization unit and the last one is command name. Those concepts we need to know it and because in your configuration file you need to put all this connection string, otherwise the integration process will be painful. So this is my topology, you can see there is this machine as claimed and I do our net configuration, the server service, first one is AD server and second one is Linux which I will use to log into the AD domain and the third one is machine I installed open LDP server and the last one is the machine which will be logged into the open LDP server, use LDP server credentials and also I installed open meetings. You can see there is a net, I do some reverse approaches, then here comes the configuration file. Actually pretty simple, just pay attention to the connection host, IP address, port and for the LDP enemy domain you need to pay attention to whatever check you are, MSAD configuration, make everything all right. And here is your administrator password, your search base, just for the interview and for the LDP search query, there are two kinds of query, probably some guys you would know for the AD, the most popular search query is same account, same account, we use a C stair string as the connection, as the search query, as the search query string and also you can use a prism name, but for the second one you need to add a domain name as the post fix and for the search code use a suppertree. For the LDP also tab for MSAD we can only use search and band, there is another band which is a simple band, but I don't know, probably they cannot watch us but for LDP server it works. So you put the use a distinction name for matter here, use a prism name like C stair string and OU of decision you need and the DEC, some things. Then for LDP, open LDP server and integration with a patch of meetings, at least a bit difference with MSAD, so this configuration in my machine, I use center 7.9 in the server sub side and the client side, for the configuration file, most content keep the same, but for example, for the ADAP admin distinction name, now you need to change according to the configuration of your open LDP server and for the search query, from here we do not need the use a prism or similar content, we use UID equal as C stair string. For the LDP third type we can now use either simple band or use a prism name or search band, LDP use a distinction name format, just check your LDP server, find the distinction name of your administrator. So here comes the log file, every time, even though in the integration process every time, even though we pretty sure everything in the capping files, in the environment we did everything correct, but actually in the process we still got some errors, so how to handle it, then we need to check the log file, fortunately developers have a certain kind of mechanism, so you can just open the log file to find anything wrong, for example, there is an error, you can see what's error message, the configuration data couldn't be retrieved, so for the screw you try to find what's wrong, and for the last one you can see, when you see this message you will see this is a band successfully, which means you are programming already talked to your ADAP service. So here comes some code, every time when you click the login button your system will call the ADAP login managed class and first class will call the login method, then call the method in the user.class.valid.login to check if the user input a valid login name, if not then just program will start, if it keeps going we will try to call our ADAP work to build a constructor, which will initialize some values, then you will see your login password and domain ID as the parameters to login as parameters as the do login method. So for the user.class the important method is the first one, if your login is method, which means if you enter an empty login name or your login name cannot meet the requirement of the system, then you will get a message and for the next one, get valid login, which means the method will help you to get the values input in the text box, then fill in the field, right, keep going. Okay that's for do login, which means if everything is correct then we will call the switch statement, check if you use search band or simple band method in your ADAP or the method. Okay actually after now you can see the configuration is done, pretty simple right. Then how to join the machine to MSAD, not too complicated, only a few steps, first you show your need server, oh jump here, you show your need server knows how to find the domain control where it is, so you just for in my environment just pretty simple just vietchost add the hostname, then you need to install packages and run it, the important thing is you need to install SSST and RIMD, then use following such commands you will find if everything is correct, which means your user already joined it, your need to machine client already joined the MSAD, then how to join the need to client with ADAP credentials, almost the same logic, firstly you need to install packages and start NSL, CD, SSST, such kind of deepening and you install open ADAP and do some configurations here, then you use just get into the password to make sure you get your credentials from the ADAP server, then make sure you restart your SSST domain and enable it, so generally that's my slides and stay for some time, would like to give you a demo, so this demo of how to integrate Apache open meetings with Apache, which I mean AD server, can you hear it? Oh, okay, I just said, when you're logging in, use your admin password to log in system and you only need to click the administrator, okay, then you click the ADAP connection, you'll see there is a webpage to check if you already got some configuration files, here I already did some configuration, so I'm going to delete and add them again, so everything changed here will be immediately to take effect in the system, you do not need to restart your server, do not restart your database, okay, so the video didn't work well, sorry, and I mainly reduced configuration, okay, thanks, thanks for your patience, let's close the video and then we'll use a terminal to type some simple commands, okay, actually we need to find the, use them, I'm just, I think it's your... Lost connection, because this is a very old Linux machine, so yeah, it works, all right, let's quickly, configuration, see I got some configuration files here, first two of them which will be used for the AD configuration, but I'm going to use the third and the fourth one which will be used for the integration with ADAP server, so first of all you need to make sure your command is connected to the ADAP server, I use ADAP search command, I believe most of you saw this command before, right, ADAP search dash x which is a simple band and dash h followed by the host name is localhost and followed by the search base, here I use DC equal localhost, DC equal local domain, SMI search base and dash capital D followed by the distinction of your administrator which is CN equal ADAP admin, DC equal localhost, DC equal domain and dash capital W then ADAP search, oh, wrong command, ADAP, ADAP search command, then password, see return output which means your, your connection already top to the ADAP server now you can do the integration, okay, I use enemy account to log system here you can see, drop down, one, two, three, four, four domains, right, and I'm going to do the open admin type, I want to show you how to use machine to log in techniques machine, for example, this machine is localhost, right, we can see etc, password, grab, YMO, you can see there is no result, right, or another username, no result which means your system, there is no such kind of user but I can use the username to log in system which means I use the credential in ADAP server, so SSH, YMO at localhost, okay, oh, I see, I need to run the nclcd command and do the logging again, then, yeah, logging right, so as you know, as you are Linux connected to the ADAP server, you can log in from any client, even from a Windows shell, so, let's see, what's the login, okay, for the ADAP connection, just go to ADAP, and leave it slowly, okay, see, there are some configuration files, each one corresponded to the domain ID in the dropbox, and I'm going to delete all of them, okay, I'm going to add the configuration very quickly, for example, first one, I used simple one, simple one, and configuration file is all women, oh, forgot the name here, so ADOMLDAP, OK, then save it, anything change here will take effect immediately, and another one, which means I use the search band in ADAP server, search one, and enable for the configuration file, I use the second one, OMLDAP, simple, oh, first one is not correct, finish now, okay, time is up, sorry about this, because you know, lost connection for a while, let me do this one, just, oh, very quickly, do it again, okay, give me two seconds, okay, so here you see, got two domains, right, I used the single one, search, and username, for example, this one, I'm saying, unfortunately, something bad just happened, okay, so I need the second one, but unfortunately, no time today, sorry about this, so let's finish my talk, right, yep, thank you very much.