Synchronization with Active Directory

Top  Download  Previous  Next

It is possible to synchronize users existing in Active Directory with the nVision database. However, it should be borne in mind that this synchronization is performed in one way only, which means that nVision reads data from Active Directory, but cannot make any changes. This means that most of the fields in the user information screen will not be available for editing.

Adding domain controller

To make the synchronization between Active Directory and nVision, add the domain controller. To do this, navigate to the Main / Users / Active Directory Controllers tab. Then click the Add configuration button and define the required parameters:

adsync_zoom40

If the data entered are correct, all users and groups created in Active Directory will be read.

Synchronization of selected organizational units (OUs)

In the configuration of domain controller, you can specify OUs with which the list of user accounts is to be synchronized. Specify OUs in the following form: MainOUName.SubOUName.

For example, when “Axence.Users.Krakow.Support” is entered in the “OU” field, then only the users from the Organizational Unit ‘Support’ in the Krakow branch of Axence will be taken from the entire forest.local domain:

adsyncou_zoom60

Synchronization log

The synchronization log provides information on communication between nVision and Active Directory. This feature may be helpful if you encounter errors related to the synchronization.

 

Synchronized user attributes

Attribute in Active Directory

Name in nVision

displayName

First name + last name

primaryGroupId

Belongs to group

manager

Superior

Managed by (group setting)

Group manager

title

Title

telephoneNumber

Phone number

mobile

Mobile phone number

mail

E-mail address