Active Directory (AD) server authentication

From Scalelogic Wiki
Revision as of 10:34, 11 June 2021 by Da-F (talk | contribs)
Jump to navigation Jump to search

This function allows you to connect to an existing Active Directory server. You can also observe the status of this connection and check if users and groups were recently synchronized.

To connect to the existing AD click the “Join AD server" button.

Status description:

  • Connection - shows whether you are connected to an AD server or not,
  • Users/groups list - shows when were the lists of users and groups last synchronized or if they are synchronizing.

Users and groups are synchronized with an Active Directory server every 2 hours. Synchronization can also be started manually by using the “Synchronize” button.

Optionally, you can set the “AD server authentication settings”. In this case, you must fill in the following fields:

  • Realm,
  • Server IP,
  • Administrator name,
  • Password.

NOTE: Password cannot contain:

  • special characters such as ' " ` ^ & $ # ~ [ ] \ / | *
  • spaces,
  • less than 12 and more than 16 characters.

The following reasons might prevent you from connecting to Active Directory:

  1. The server name is the same as the Computer Organizational Unit (OU) named in the Active Directory (AD) server. If the object with the same name exists and the user that you use to log in to the AD server does not have permission to access this file, the connection will fail. The solution is to delete the existing computer object from the AD server. The following information explains how to delete the OU file:
    • Log on to the Domain Controller with the domain administrator account. Press Windows Logo + R, enter "dsa.msc" and press Enter.
    • In the "Active Directory Users and Computers" window, select the domain container in which the OU you are looking for is located.
    • Select the computer object and delete it.

Note: By default, any created Organizational Unit is protected from accidental deletion. To delete the OU, you need to clear the "Protect object from accidental deletion" checkbox, which you can find in the object properties in the "Object" tab. By deleting OU, you delete all nested objects that it contains as well.

Retrieved from "http://wiki.scalelogicinc.com/nx/index.php?title=Active_Directory_(AD)_server_authentication&oldid=723"