Introduction
...
The following configuration parameters are available for the Microsoft Active Directory system connector:
Parameter | Mandatory field | Datatype | Description |
---|---|---|---|
Server | Text | Name of the Servers | |
Domain name | ✔ | Text | IP address from the server or the FQDN e.g. |
Username | Text | User credentials on the server | |
Password | Password | User credentials on the server | |
Exchange Server | Text | IP address from the server or the FQDN e.g. 10.20.0.5 / test.verwaltung.example.ch | |
Exchange SSL | Checkbox | Exchange SSL | |
Exchange ShellUri | Text | Exchange ShellUri | |
Exchange AppName | Text | Exchange AppName | |
Exchange Authentication method | Drop Down: Default | The authentication method | |
User must change password at next login | Checkbox | The user is prompted to change the password at the next login → This setting can be overwritten either by a password policy that is set on the target system or with the corresponding attribute on the identity provisioning configuration | |
Ignore user deletion protection | Checkbox | Cancels the deletion protection from the user | |
Ignore resources deletion protection | Checkbox | Unprotects the resources from deletion | |
Create home directory | Checkbox | Creates a home directory | |
Create profile directory | Checkbox | Creates a profile directory | |
Delete home directory | Checkbox | Deletes the home directory | |
Delete profile directory | Checkbox | Deletes the profile directory | |
Update home directory | Checkbox | Updates the home directory | |
Update profile directory | Checkbox | Updates the profile directory | |
Display attributes for unmanaged identities | Text | Display attributes for unmanaged identities. This is the property that will be used to display an unmanaged identity within the CoreOne Suite. Use either |
Compatibility
The following target systems are supported:
...
AD object | Description |
---|---|
Security Group | An Active Directory security group. |
Distribution Group | An Active Directory distribution group. |
AGDLP-Group | Creates and maintains various group objects in accordance with the AGDLP group concept (https://en.wikipedia.org/wiki/AGDLP ) |
...
Function (Task feature) | Supported |
create/delete identities | ✔ |
provisioning identities | ✔ |
update identities | ✔ |
provisioning identity updates | ✔ |
deprovision identities | ✔ |
cleanup of inactive identities active | ✔ |
check password changed active | ✔ |
Resources functions
The following resource functions are supported:
Function (task feature) | Supported |
create/delete resources | ✔ |
provision resources | ✔ |
update resources | ✔ |
provisioning resource changes | ✔ |
deprovisioning resources | ✔ |
provisioning resource allocations | ✔ |
deprovisioning resource allocations | ✔ |
provisioning resources-resource allocations | ✔ |
Deprovisioning resource resource allocations | ✔ |
Cleanup functions
The following cleanup functions are supported:
Function (task feature) | Supported |
Is available in the target/actual (Soll-Ist) comparison log | ✔ |
Clean up target/actual (Soll-Ist) | ✔ |
Read back user account properties | ✔ |
Resource identity assignments Target system cleanup | ✔ |
Resource-resource assignments Target system cleanup | ✔ |