Default Active Directory attribute mapping - Security Center 5.11

Active Directory Integration Guide 5.11

Product
Security Center
Content type
Guides > Integration guides
Version
5.11
Language
English
Last updated
2022-10-24

When you synchronize an AD with Security Center, certain standard AD attributes are mapped by default to the standard Security Center fields.

The following standard fields, with their default AD attributes shown in brackets, are imported from the AD:

Security Center field Active Directory attribute
User groups
Name sAMAccountName
Description description
Email address mail
All group members users
Users (members of imported user groups)
Username samAccountName
Password Not synchronized. Log on credentials are validated by the AD service
Description description
First name givenName
Last name sn
Email address mail
Status:
  • Active
  • Inactive
  • AccountExpires
  • userAccountControl
Cardholder groups
Name sAMAccountName
Description description
Email address mail
All group members cardholders
Cardholders (Members of the imported cardholder groups)
Cardholder name samAccountName
Description description
First name givenName
Last name sn
Email address mail
Status:
  • Active
  • Inactive
  • AccountExpires
  • userAccountControl
Picture Optional through the Links page
Partition Optional through the Links page
Credentials (Associations to the imported cardholders)
Credential name sAMAccountName
Card credential
  • Card format (must be configured through the Links page)
  • Badge template (must be configured through the Links page)
  • Card data (must be configured through the Links page)
  • Facility code (must be configured through the Links page)
  • Card number (must be configured through the Links page)
PIN credential PIN (must be configured through the Links page)
Plate credential License plate (must be configured through the Links page)
Status:
  • Active
  • Inactive
  • AccountExpires
  • userAccountControl
Partition Optional through the Links page

If necessary, you can customize the mapping of AD attributes to cardholder and credential fields from the Links page of the Active Directory role. Additional attributes can also be imported from the AD by linking them to Security Center custom fields. The Active Directory role keeps all imported fields synchronized with the AD.

Limitation: When linking entity attributes from Config Tool, the entities cannot be synchronized if Config Tool is in a different language from the host running the Active Directory role.