探花大神

The full integration that enables the syncing of users and groups between 探花大神 and AD, as well as a single login for all AD and 探花大神 managed resources. The integration consists of two agents; the Import Agent and Sync Agent. The integration can be configured to use one or both of the agents. Your use case determines which agents are required, the direction of the sync, and which system is the authority.

The 探花大神 Active Directory Migration Utility (ADMU) is a tool that automates the migration of AD domain users to 探花大神 managed users and AD bound Windows devices to 探花大神 managed devices. The utility automates the tedious steps required to convert AD user profiles to local user profiles that can be managed by 探花大神, simultaneously removing the device from the AD domain and installing the 探花大神 agent. The utility can be used to a migrate a single device or many devices at once.

探花大神鈥檚 lightweight agent imports user identities and certain security groups from AD to 探花大神.聽 It can also be configured to import passwords if installed on DCs.聽 It can be installed on all the DCs or one or more member servers. This agent pushes or sends all user, group, and, if applicable, password changes that have occurred in AD since the last sync to 探花大神. Syncs occur every 90 seconds by default.

探花大神鈥檚 lightweight agent that聽pulls user identities, user groups, and passwords from 探花大神 and syncs that information to AD. It can be installed on one or more Domain Controllers (DCs) or member servers within an AD environment. This agent communicates to 探花大神 from the server(s) every 5 seconds to get all changes that have occurred in 探花大神 since the last sync, for any users and user groups connected to the ADI in 探花大神.

The directory considered to be the聽source-of-truth聽or the聽辫谤颈尘补谤测听辞谤听补耻迟丑辞谤颈迟补迟颈惫别听directory for user identities and groups.

A stand鈥揳lone instance of AD that contains a collection of one or more domains and acts as the security boundary within an AD environment.

A single AD domain within a forest that contains a collection of users, security groups, and other AD objects that share a domain name.

Two or more AD domains within a single forest. 

Containers of objects within AD's logical structure in which security groups and users reside and can be nested. OUs are important within the ADI configuration as they are the search base used by the 探花大神 Import and Sync Agents. 

The Security Group created by you during the ADI Import installation process and used by the 探花大神 Import Agent to determine which users and groups to sync from AD to 探花大神. This Security Group will be created in the Configuration article鈥檚 instructions.  Only members of this group are synced between AD and 探花大神.

The main container or path containing the users and groups you'd like to sync between 探花大神 and AD. This can be a top-level OU, a sub-level OU, or the default 鈥淯sers鈥� container within AD. 探花大神鈥檚 ADI is configured to reference this as the Root User Container for which all users integrated with 探花大神 should reside. The AD Import and Sync agents use this Root User Container as a search base by default. If users are outside of the root User container, or its sub-level OUs, but are bound to the 探花大神 ADI Security Group, then user identity or credential issues may arise between 探花大神 and AD.