Creating an Active Directory role in Security Center - Security Center 5.11

Active Directory Integration Guide 5.11

Product
Security Center
Content type
Guides > Integration guides
Version
5.11
Language
English
Last updated
2022-10-24

To import users and cardholders with their credentials from an AD, you must create an Active Directory role for the AD you want to import. The Active Directory role integrates your Security Center system with an AD server, and imports users, cardholders, and credentials from selected security groups.

Before you begin

If you have servers in your system that are running an earlier version of Security Center, you must upgrade the servers to the current version before using them to host a new Active Directory role.

Procedure

  1. Open the System task and click the Roles view.
  2. Click Add an entity () and select Active Directory.
  3. On the Specific info page, do the following:
    1. (If you have multiple servers in your system) From the Server list, select the server on which you want to host the role.
    2. In the Active Directory field, enter the AD Fully Qualified Domain Name (FQDN), hostname, or IP address of the AD server.
      You must point to the domain name in the Active Directory field, not the computer name.
      If you are not using a default port, you must append the port number you are using to the AD server name, separated by a colon. For example, ADServer.Genetec.com:123. The default ports are as follows:
      • Active Directory with no SSL: 389
      • Active Directory with SSL: 636
      • Global catalog no SSL: 3268
      • Global catalog with SSL: 3269
    3. Specify how you want the role to connect to the AD server.
      You must have read access to the selected AD service.
      • Use the Windows credentials assigned to the Genetecâ„¢ Server service that is running on the server hosting the Active Directory role.
      • Specify a different set of Windows credentials (username, password).
  4. On the Basic information page, enter the name, description, and partition where you want to create the Active Directory role.
  5. ClickNext > Create > Close.
    A new Active Directory role () is created. Wait a few seconds for the role to connect to the AD server.
  6. (Optional) If you are importing a universal group that is connected to a global catalog, turn on the Use global catalog option.
  7. (Optional) If you have multiple servers, use the Connect to specific domain controller option to choose the specific server from which you want to import your schema architecture.