When you synchronize an AD with Security Center, certain standard AD attributes are mapped by default to the standard Security Center fields.
The following standard fields, with their default AD attributes shown in brackets, are imported from the AD:
Security Center field | Active Directory attribute |
---|---|
User groups | |
Name | sAMAccountName |
Description | description |
Email address | |
All group members | users |
Users (members of imported user groups) | |
Username | samAccountName |
Password | Not synchronized. Log on credentials are validated by the AD service |
Description | description |
First name | givenName |
Last name | sn |
Email address | |
Status:
|
|
Cardholder groups | |
Name | sAMAccountName |
Description | description |
Email address | |
All group members | cardholders |
Cardholders (Members of the imported cardholder groups) | |
Cardholder name | samAccountName |
Description | description |
First name | givenName |
Last name | sn |
Email address | |
Status:
|
|
Picture | Optional through the Links page |
Partition | Optional through the Links page |
Credentials (Associations to the imported cardholders) | |
Credential name | sAMAccountName |
Card credential |
|
PIN credential | PIN (must be configured through the Links page) |
Plate credential | License plate (must be configured through the Links page) |
Status:
|
|
Partition | Optional through the Links page |
If necessary, you can customize the mapping of AD attributes to cardholder and credential fields from the Links page of the Active Directory role. Additional attributes can also be imported from the AD by linking them to Security Center custom fields. The Active Directory role keeps all imported fields synchronized with the AD.
Limitation: When linking entity attributes from Config Tool, the entities cannot be synchronized if
Config Tool is in a different language from
the host running the Active Directory role.