Configuring Active Directory Connection Settings

Views:

Specify the connection settings to allow Apex Central to synchronize endpoint and user information from Active Directory servers.

Note:

Apex Central supports synchronization with multiple Active Directory forests. Adding an Active Directory domain automatically synchronizes all domains from the same forest.

For more information about forest trusts, contact your Active Directory administrator.

Go to Administration > Settings > Active Directory and Compliance Settings.
Click the Active Directory Settings tab.
Select Enable Active Directory synchronization and authentication.

Configure the connection settings to access an Active Directory server.

Field	Description
Server address	Type the FQDN or IP address (IPv4 or IPv6) of the Active Directory server.
User name	Type the domain name and user name required to access the Active Directory server. Example format, `domain\user_name`
Password	Type the password required to access the Active Directory server.

Field

Description

Server address

Type the FQDN or IP address (IPv4 or IPv6) of the Active Directory server.

User name

Type the domain name and user name required to access the Active Directory server.

Example format, domain\user_name

Password

Type the password required to access the Active Directory server.

To add another Active Directory server, click the add icon ().
To delete an Active Directory server, click the delete icon ().

From the Synchronization frequency (in hours) drop-down list, select how often Apex Central synchronizes data with Active Directory servers.
Note:
Active Directory synchronization times vary based on the size and complexity of the Active Directory database. You may need to wait for more than an hour before synchronization completes.
(Optional) Expand Advanced settings to configure the Synchronization source or Connection mode.
1. Select one of the following synchronization sources:
  - Domain controllers: Synchronizes all domains from multiple forests with trust relationships
  - Global catalog: Synchronizes all domains from a single forest
    
    Important:
    Some information used by Apex Central, such as geographic location and user membership in global groups or domain local groups, cannot be synchronized from a global catalog with default settings. Choose to synchronize from a global catalog only if your network policy restricts Apex Central from connecting to all domain controllers.
2. Select one of the following connection modes:
  - SSL
    
    Important:
    To use an SSL connection, import the Active Directory Certificate to the Apex Central server.
  - Non-SSL
(Optional) Click Test Connection to test the server connection.
Note:
Testing the connection does not save the Active Directory server settings.

The Active Directory server connection status icon ( or ) appears in front of the server address.
Click Save.
Apex Central synchronizes endpoint and user information from the Active Directory server(s) according to the synchronization frequency.
(Optional) Configure which Active Directory domains and OUs Apex Central synchronizes by modifying the ADSyncOUList.config configuration file located at:
<Apex Central installation directory>\ADSyncOUList.config
(Optional) Click Synchronize Now to manually synchronize Active Directory data.
The Active Directory server connection status icon ( or ) appears in front of the server address.
To remove a synchronized Active Directory server:
1. Clear the Enable Active Directory synchronization check box.
2. Click Clear Data to purge the Apex Central server of data from the removed Active Directory server.
  Apex Central removes the synchronized Active Directory server.
  
  Note:
  Clicking Clear Data triggers a scheduled task, which runs every 2 minutes, to purge all data of the removed Active Directory servers from the Apex Central database.