Setting up Active Directory (AD) Server AuthenticationLast Updated: 08/18/2016 Introduced in Verision: 2.0
An Active Directory (AD) server can be used to synchronize users, computers, groups, or organizational units to the Portal’s account base. An account can either be a person or a machine. When an AD account is used, the account’s AD credentials are authenticated to gain access to the portal. For data integrity purposes, AD accounts cannot be edited in the Portal (using reset password, for example). Accounts are used for access to the Portal, and can be used for Service Desk and workflow assignments and so forth.
In the Edit Active Directory Settings screen, it is recommended to leave the Auto Sign In checkbox selected. When Auto Sign-In is enabled, accounts will be automatically signed in based on the AD credentials used to log in to the machine.
To configure a new AD server, click the Add button for the Servers field.
Select the Auto Create Users on Initial Login checkbox to allow a user immediate access to the portal as soon as the account is created in the AD server. The user will not have to wait for the next sync cycle to log in using AD. Once the user logs in to the portal, the AD account is added to the portal’s account base.
All fields are required. It is recommended you have the domain name, default email domain, user name for an account with admin rights, and password information before you begin.
In the Synchronization Options drop-down list:
- Select the Entire Domain option to synchronize everything in AD to your portal account base, including users, groups, and organizational units. If the Sync Only Users checkbox is selected, then only users within the domain will be synced. Use this option with caution.
- Select the Selected Org Units option to select specific organizational units. When selected, only those org units will be synchronized to the portal’s account base.
- Select the Selected Groups option to synchronize only the selected AD groups.
Need more help with:
Setting up Active Directory (AD) Server Authentication?