Configuring Active Directory Integration

To automatically synchronize with your Active Directory structure, configure the following:

  • Integration settings on the Worry-Free Business Security Services web console

  • Trend Micro Common Active Directory Synchronization Tool

  1. Go to Administration > Active Directory Settings.
  2. Click Configure Integration.

    The Integration Settings tab appears.

  3. Under Active Directory Domains, click Add Domain.

    The Add Domain screen appears.

  4. Specify the root DN.

    If your Active Directory structure contains multiple domains, only add the domains that communicate through port 389. Adding the domain that communicates through port 3268 places Security Agents in the default folders in the Device Tree and prevents you from managing Security Agents based on your Active Directory structure.

    For information on how to find the "root bind distinguished name" (DN), refer to the administrator's guide of your Active Directory server.

  5. Click Add.

    Worry-Free Business Security Services adds the domain to the Active Directory Domains section.

  6. Under Synchronization, specify the frequency to synchronize Active Directory data between the Common Active Directory Synchronization Tool and Worry-Free Business Security Services.
  7. To only synchronize with active computers, select Exclude computers that have not logged on for N days and specify a number.
  8. Click Save.
  9. On the screen that appears, click Open Synchronization Tool Tab.

    The Synchronization Tool tab appears.

  10. Download and install the Common Active Directory Synchronization Tool on a high performance endpoint that can connect to the Active Directory server.

    For more information on the system requirements, see Common Active Directory Synchronization Tool System Requirements.

  11. Follow the instructions on the Synchronization Tool tab to complete the integration.

    Once you apply the synchronization settings, you can close the Common Active Directory Synchronization Tool.

    Note:

    If you restart the endpoint running the Common Active Directory Synchronization Tool, you must manually load the tool to ensure that all required services are running.