Introduction
This article describes the CoreOne system connector Microsoft Active Directory.
Configurationsparameter
The following configuration parameters are available for the Microsoft Active Directory system connector:
Parameter | Mandatory field | Datatype | Description |
|---|---|---|---|
Server | Text | Name of the Servers | |
Domain name |
| Text | IP address from the server or the FQDN e.g. |
Username | Text | User credentials on the server | |
Password | Password | User credentials on the server | |
Exchange Server | Text | IP address from the server or the FQDN e.g. 10.20.0.5 / test.verwaltung.example.ch | |
Exchange SSL | Checkbox | Exchange SSL | |
Exchange ShellUri | Text | Exchange ShellUri | |
Exchange AppName | Text | Exchange AppName | |
Exchange Authentication method | Drop Down: Default | The authentication method | |
User must change password at next login | Checkbox | The user is prompted to change the password at the next login → This setting can be overwritten either by a password policy that is set on the target system or with the corresponding attribute on the identity provisioning configuration | |
Ignore user deletion protection | Checkbox | Cancels the deletion protection from the user | |
Ignore resources deletion protection | Checkbox | Unprotects the resources from deletion | |
Create home directory | Checkbox | Creates a home directory | |
Create profile directory | Checkbox | Creates a profile directory | |
Delete home directory | Checkbox | Deletes the home directory | |
Delete profile directory | Checkbox | Deletes the profile directory | |
Update home directory | Checkbox | Updates the home directory | |
Update profile directory | Checkbox | Updates the profile directory | |
Display attributes for unmanaged identities | Text | Display attributes for unmanaged identities. This is the property that will be used to display an unmanaged identity within the CoreOne Suite. Use either |
Compatibility
The following target systems are supported:
Microsoft Active Directory 2008 |
Microsoft Active Directory 2008 R2 |
Microsoft Active Directory 2012 |
Microsoft Active Directory 2012 R2 |
Microsoft Active Directory 2016 |
Microsoft Active Directory 2019 |
Resources type
The following resource types are supported:
Groups
AD object | Description |
|---|---|
Security Group | An Active Directory security group. |
Distribution Group | An Active Directory distribution group. |
AGDLP-Group | Creates and maintains various group objects in accordance with the AGDLP group concept (https://en.wikipedia.org/wiki/AGDLP ) |
Computer
Deprecated
AD Object | Description |
|---|---|
Computer | Computer object |
Identity types
The following identity types are supported:
AD Object | Description |
|---|---|
User | User object |
Contact | Contact object |
Identity functions
The following identity functions are supported:
Supported | |
create/delete identities |
|
provisioning identities |
|
update identities |
|
provisioning identity updates |
|
deprovision identities |
|
cleanup of inactive identities active |
|
check password changed active |
|
Resources functions
The following resource functions are supported:
Supported | |
create/delete resources |
|
provision resources |
|
update resources |
|
provisioning resource changes |
|
deprovisioning resources |
|
provisioning resource allocations |
|
deprovisioning resource allocations |
|
provisioning resources-resource allocations |
|
Deprovisioning resource resource allocations |
|
Cleanup functions
The following cleanup functions are supported:
Supported | |
Is available in the expected/actual comparison log |
|
Clean up expected/actual |
|
Read back user account properties |
|
Resource identity assignments Target system cleanup |
|
Resource-resource assignments Target system cleanup |
|