Versions Compared

Old Version 15

changes.mady.by.user Max Pinion

Saved on

compared with

New Version 16

changes.mady.by.user Scott Griggs

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

 

Anchor
top
top
The Active Directory Sync will pull computer names and users into Arellia Management Server (AMS). To sync the Active Directory, do the following steps:

...

  1. In the Arellia Security Manager, click the Configuration tab.
  2. In the file library in the left pane, navigate to Settings > Foreign Software Systems > Foreign Software System Types > Active Directory Domains.
  3. In the right pane, click New > Active Directory Domain.
  4. In the Create Item dialog box, enter a DNS name and domain Password.
  5. Click Save.

  6. Then specify the FQDN of the Domain and select the Default User Credential, or a custom credential to use to access the domain.

Anchor
Sync Active Directory
Sync Active Directory
Sync Active Directory

Back to top

To sync with the active directory, do the following steps:

...

The LDAP Directory Synchronize Task will import and synchronize Active directory resources such as users, computers, containers, and organizational units into AMS. 

Default Synchronize Directory

The Default Synchronize Directory task will import and synchronize users, containers, and organizational units into AMS. 

  1. Open the Tasks tab in Arellia Security Manager console.
  2. On the left expand the Jobs and Tasks section.
  3. In the tree navigate to Jobs and Tasks > Server Tasks > Directory Services .
  4. Right-click the Directory Services folder and click New > Tasks > LDAP Directory Synchronise Task.
    Image Removed
    5. In the Create Item dialog box, enter a Name and Description for the new task.
    Image Removed
  5. In the right-pane, click the Select... link next to Directory Id and select the active directory domain you created in the previous section.
  6. Click the Select... link next to Directory Partner Id and select an appropriate Directory Partner for AMS to connect to.
    Image Removed
  7. Click Save
  8. Run this task using one of the following methods:
    1. Under Schedules, click New Schedule and set a time for the task to execute
    2. In the file library in the left pane, right-click the new task and click Run...

After the task has executed, users and computers will appear under the Resources tab.

...

  1. > Default Synchronize Directory.
  2. On the right click the Run Now... button.
  3. Select a directory to sync and optionally a directory partner and click Run Now to begin.

Image Added 

Tip

When left empty the default Query value is (|(&(objectclass=user)(objectcategory=person)(!(sAMAccountType=805306370)))(objectcategory=group)(objectCategory=container)(objectCategory=organizationalUnit))

Active Directory Organizational Views

After the Default Synchronize Directory executes and is closed you can view the imported and synchronized objects. 

  1. Open the Resources tab in Arellia Security Manager console.
  2. On the left expand the Resources section.
  3. In the tree navigate to Organizational Views > Active Directory Domains > (Your Domain).

[[smg 08/04/2015 - The image below shows our domain name, names of computers in our domain, some group names, and my name.  May want to run this by Kevin and Michael to see if this is OK to disclose publicly.]]

 

Image Added

Tip

To avoid excessive data only top-level containers such as Computers and Users are imported.

Default Synchronize Directory Computers

The Default Synchronize Directory Computers task will import and synchronize Active Directory computers into AMS.

  1. Open the Tasks tab in Arellia Security Manager console.
  2. On the left expand the Jobs and Tasks section.
  3. In the tree navigate to Jobs and Tasks > Server Tasks > Directory Services > Default Synchronize Directory Computers.
  4. On the right click the Run Now... button.
  5. Select a directory to sync and optionally a directory partner and click Run Now to begin.

After the task executes and is closed you should find Active Directory computers in the Organization Views as described above. 

Tip

You can create a new LDAP Directory Synchronize Task by right-clicking the Directory Services folder and selecting New > Tasks > LDAP Directory Synchronize Task.