...

maxLevel	1
type	flat

Introduction

This article describes the CoreOne system connector Microsoft Active Directory Connector.

Configurationsparameter

...

The configuration parameters from the Target systems.

If the SystemConnect is located on the CoreOne Suite Server, port 9000 must be set to 9001 in the DB, otherwise no connection to the AD can be established.:

...

The following configuration parameters are available in for the Microsoft Active Directory system connector:
Parameter
Mandatory field
Values
Datatype
Description
Server
-
Input field
Text
Name of the Servers
Domain name
✔
✅
Input field
Text
IP address from the server or the FQDN e.g.
Username
-
Input field
Text
User credentials on the server
Password
-
Input field
Password
User credentials on the server
Exchange Server
-
Input field
Text
IP address from the server or the FQDN e.g. 10.20.0.5 / test.verwaltung.example.ch
Exchange SSL
-
Option field
Checkbox
Exchange SSL
Exchange ShellUri
-
Input field
Text
Exchange ShellUri
Exchange AppName
-
Input field
Text
Exchange AppName
Exchange Authentication method
-
DefaultBasicNegotiateNegotiateWithImplicitCredentialCredsspDigestKerberos
Drop Down:
Default
Basic
Negotiate
NegotiateWithImplicitCredential
Credssp
Digest
Kerberos
The authentication method
User must change password at next login
-
Option field
Checkbox
The user is prompted to change the password at the next login
→ This setting can be overwritten either by a password policy that is set on the target system or with the corresponding attribute on the identity provisioning configuration
Ignore user deletion protection
-
Option field
Checkbox
Cancels the deletion protection from the user
Ignore resources deletion protection
-
Option field
Checkbox
Unprotects the resources from deletion
Create home directory
-
Option field
Checkbox
Creates a home directory
Create profile directory
-
Option field
Checkbox
Creates a profile directory
Delete home directory
-
Option field
Checkbox
Deletes the home directory
Delete profile directory
-
Option field
Checkbox
Deletes the profile directory
Update home directory
-
Option field
Checkbox
Updates the home directory
Update profile directory
-
Option field
Checkbox
Updates the profile directory
Display attributes for unmanaged identities
-
Input field
Text
Display attributes for unmanaged identities. This is the property that will be used to display an unmanaged identity within the CoreOne Suite. Use either `SamAccountName`, `DisplayName` or any other meaningful Active Directory attribute.

Compatibility

The following target systems are supported:

Microsoft Active Directory 2008

Microsoft Active Directory 2008 R2

Microsoft Active Directory 2012

Microsoft Active Directory 2012 R2

Microsoft Active Directory 2016

Microsoft Active Directory 2019

Resources type

The following resource types are supported:

Groups

AD object	Description
Security Group

Used to assign permissions to shared resources

An Active Directory security group.

Distribution Group

Used to create e-mail distribution lists

AGLP-Group

Computer

An Active Directory distribution group.
AGDLP-Group	Creates and maintains various group objects in accordance with the AGDLP group concept (https://en.wikipedia.org/wiki/AGDLP )

Computer

Note
Deprecated

AD Object	Description
Computer

Computerobject

Computer object

Identity types

The following identity types are supported:

AD Object	Description
User

Userobject

Contact

Contactobject

How-to articles

Filter by label (Content by label)

cql	label in ( "systemkonnektor" , "how-to" ) and type = "page" and space = "IKB"

Identity features

The following identity functions are supported:

System Connector task features	Supported
Create/delete identities	✅
Provisioning identities	✅
Update identities	✅
Provisioning identity updates	✅
Deprovision identities	✅
Cleanup of inactive identities active	✅
Check password changed active	✅

Resources features

The following resource functions are supported:

System Connector task features	Supported
Create/delete resources	✅
Provision resources	✅
Update resources	✅
Provisioning resource changes	✅
Deprovisioning resources	✅
Provisioning resource allocations	✅
Deprovisioning resource allocations	✅
Provisioning resources-resource allocations	✅
Deprovisioning resource resource allocations	✅

Cleanup features

The following cleanup functions are supported:

System Connector task features	Supported
In the should-actual Log available	✅
Should be - Actually is - cleanup	✅
Read back account properties	✅
Resource identity member target system clean up	✅
Resource resource member target system clean up	✅

Version	Old Version 29	New Version Current
Changes made by	Christina Burkhard	Luca Kurmann
Saved on	15. Apr 2021	06. Nov 2024

Versions Compared

Key

Introduction

Configurationsparameter

Compatibility

Resources type

Groups

Computer

Computer

Identity types

How-to articles

Related articles

Identity features

Resources features

Cleanup features

Text	IP address from the server or the FQDN e.g. 10.20.0.5 / test.verwaltung.example.ch
Exchange SSL	-

Checkbox	Cancels the deletion protection from the user
Ignore resources deletion protection	-

Checkbox	Unprotects the resources from deletion
Create home directory	-

Checkbox	Updates the profile directory
Display attributes for unmanaged identities	-

Page Comparison

Versions Compared

Key

<span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-0">[data-colorid=</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-0">q05hc5v5rl</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-1">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-2">q05hc5v5rl</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-3">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-6">j8lxfpmor2</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-7">]{color:</span>

<span class="diff-html-added" data-a11y-before="Start of added content" data-a11y-after="End of added content" id="added-diff-8">j8lxfpmor2</span><span class="diff-html-changed" data-a11y-before="Start of changed content" data-a11y-after="End of changed content" id="changed-diff-9">]{color:</span>

Introduction

Configurationsparameter

Compatibility

Resources type

Groups

Computer

Computer

Identity types

How-to articles

Related articles

Identity features

Resources features

Cleanup features