Set up NTLM authentication on your server

The steps below are to be used as a guide for setting up NTLM authentication for HotDocs Workspace as there may be variations between different servers.

1. Edit User Details

Before editing any setting in your server we recommend you first change all of your users over to NTLM authentication within Workspace so you are able to immediately access Workspace once you have completed the set up. You need to set up one local user (usually an admin) for the server and then you can set up remote users.

1. In the Navigation bar The Navigation bar is the top-level navigation menu, linking to the main sections of Workspace. It appears on every page of Workspace. Clicking on a link in the navigation bar takes the user to the selected Section. of Workspace, click Users.
2. Click the Edit button next to the user you wish to edit.
3. Check the box next to User is NTLM User.
4. In the NTLM Name text box type:
   1. For a local user: the server name followed by a backslash and their username on the server e.g. servername\Administrator
   2. For a remote user: their domain followed by a backslash and their username for that domain e.g. domainname\johndoe

5. Click Save.

6. Repeat for every remote user.

2. Edit Web Config file

You need to make two changes to the Web Config file to allow NTLM authentication.

Both settings are case sensitive.

1. Locate the line <FdpNtlmConfiguration EnableNtlm="false"/> and change the attribute to "true".
2. Locate the line <authentication mode="Forms"> and change the attribute to "Windows".
3. Save and close.

3. Edit IIS configuration

1. Open IIS Manager.
2. In the connections pane, expand the connections until you get to the Workspace site level (e.g. ServerName>Sites>Default Web Site>Workspace)
3. Double click on Authentication.
4. Windows Authentication needs to be enabled and Forms Authentication and Anonymous Authentication need to be disabled.

If Windows Authentication is not available:

1. Open Server Manager.
2. Expand Roles in the left pane and right click on Web Server (IIS).
3. Select Add Role Services.
4. Under Security, check the box next to Windows Authentication.
5. Click Next and then Install.

You may need to restart your server for Windows Authentication to be available in IIS Manager.

Final steps

If your server is not already part of the domain you used for remote user NTLM names in section 1:

1. Open Control Panel.
2. Open System.
3. Under Computer name, domain and workgroup settings, click Change Settings.
4. On the Computer Name tab click Change.
5. Make sure the radial button for Domain is checked, then enter the Domain name in the text box below.