Introduction
This wiki page shows all the steps needed to configure an external Active Directory resource identified by the following connection parameters:
Server hostname: 192.168.0.129
Server port: 636
Principal: cn=Administrator,cn=Users,dc=pluto,dc=org
Principal password: password
Root suffixes: dc=pluto,dc=org
Entry base context: cn=Users,dc=pluto,dc=org
In order to link an external Active Directory resource there are pre-requisites and configuration steps to be satisfied.
Pre-Requisites
Configuration steps
Configure Active Directory JNDI connector instance
Please, take a look at all configurable parameters at Active Directory Connector Configuration and use this page as reference to provide your configuration.
- Open your browser and access to the Syncope administration console (http://host:port/syncope-console).
- Log into the interface by providing the following credentials:
- :Login: admin!ad2.png|thumbnail,width=200px!;
- :Password: password.
- Click on the Resources tab.
- Click on the Connectors sub-tab.
- Click on Create new Connector button (configuration modal page appears).
- Click on tab General.
- :Provide Display name (e.g. 'Active Directory demo connector') and the correct Bundle name (org.connid.bundles.ad.${version}).
- Click on tab Configurations and provide connector instance configuration.
#:Server hostname: 192.168.0.129
#:Server port: 636
#:Principal: cn=Administrator,cn=Users,dc=pluto,dc=org
#:Principal password: password
#:Root suffixes: dc=pluto,dc=org
#:Entry base context: cn=Users,dc=pluto,dc=org
#:Object classes to synchronize: User
#:Entry object classes: Top Person OrganizationalPerson User
#:Retrieve deleted users: TRUE
#:Trust all certs: TRUE
#:Memberships: cn=Domain Guests,cn=Users,dc=pluto,dc=org - Click on tab Capabilities.
- Check needed capabilities as shown at Connector instance configuration.
- Click on Save button.
Configure Active Directory resource
- Click on the Resources tab.
- Click on the Resources sub-tab.
- Click on Create new Resource button (configuration modal page appears).
- Click on Resource Details tab.
- Choose from the list the correct Connector instance name.
- Provide the following information
- :Name: Active Directory demo
- :Connector: Active Directory demo connector
- Click on Schema Mappings tab.
- Click on Add button to insert attributes mapping.
- Provide Account Link: 'cn=' + username + ',cn=Users,dc=pluto,dc=org'
- Click on Save button.
Internal mapping types |
Internal mapping |
External Attributes |
Mandatory condition |
Account Id |
Password |
---|---|---|---|---|---|
Username |
|
|
true |
X |
|
Password |
|
|
true |
|
X |
UserSchema |
surname |
sn |
true |
|
|
UserSchema |
firstname |
givenName |
false |
|
|
UserSchema |
fullname |
displayName |
false |
|
|
UserSchema |
true |
|
|