Chat now with support
Chat mit Support

On Demand Migration Current - Active Directory SID History Synchronization Quick Start Guide

Setup

This section provides a step-by-step guide on how to set up sIDHistory Synchronization for Microsoft Active Directory Environments.

Setup Environments

 

To begin at least two (2) Active Directory environments must be configured in Directory Sync. At the end of this section there will be two (2) Active Directory environments fully configured.

An environment is an end-point connection that can control the scope of objects read. This guide will walk through how to create the source and target active directory environments.

To create a local AD environment, the following are required

  • One (1) Local Administrator Account for each Microsoft Forest and/or Domain that has permissions to create, update or delete depending on the scope of your Directory Sync workflows, this Administrator Account should also meet the sIDHistory synchronization requirement as stated in Account Permissions section above.

  • One (1) Windows Server to install and host the Directory Sync Agent.

Follow these steps to setup the cloud environment endpoints.  

  1. Navigate to Environments

  1. Click the New button

  2. Click Local as the environment type, Click Next

  3. Name the environment, Click Next

  4. Name the local agent, Click Next

  5. Note the agent registration URL and registration Key for later use, click Finish.

  6. Install the agent in the Windows Server that is joined to the local AD domain.  

    1. Launch the Directory Sync Agent installation in the target workstation or server

    2. Accept the license agreement and click on next.

    3. Enter the target active directory environment information by providing the following and click next.

      1. Domain Name

      2. Global Catalog Server

      3. Username

      4. Password

    4. Enter the Directory Sync Registration URL and Agent Registration Key information and click next.

    5. In the sIDHistory Migration section, provide the source Active Directory domain name, and user credential information. The source credential must have administrator permission in the source domain.  If the source environment is a forest and contain multiple domains, ‘Use this account for all domains’ checkbox can be used to only a single source credential for all source domains in the forest. 

Note, Refer to On Demand Migration Active Directory User Guide for detailed information about agent installation and set-up requirements.

  1. Once agent is installed and the environment is discovered, click on the Setting button to access the local AD environment setting page.

  2. Click on the Organization Unit tab and define the OU filter based on your project scope.

  3. Click on the Filters tab and define any LDAP filter based on your project scope.

  4. Click Save.

  5. Repeat steps 2 – 11 for the next local environment

Setup Templates

Before we can build our workflow, it is best to set up your template(s). Templates contain common mappings and settings used to sync Users, Contacts, Devices, Groups, Office 365 Groups and Microsoft Teams. A template can then be applied to any workflow with a Stage Data step.

For the purpose of this guide, the following template will need to be configured to perform sIDHistory synchronization.  Additional templates may be created based on your project requirements.

  • Local to Local sIDHistory Sync

How to create a Local to Local template

  1. Navigate to Templates

  1. Click the New button

  2. Name and Describe the template

  3. In our example, we will name our template “Local to Local sIDHistory Sync”, Click Next

  4. Click Local as the source environment type, Click Next

  5. Click Local as the target environment type, Click Next

  6. Set CREATE NEW USERS AS = AS-IS

  7. Set UPDATE CREATED USERS= ENABLE

  8. Set UPDATE MATCHED USERS= ENABLE

  9. Set IF TARGET ADDRESS EXISTS setting as OVERWRITE ONCE.

  10. Click Next

  11. Set CREATE GROUPS AS = AS-IS

  12. Set UPDATE CREATED GROUPS = ENABLE

  13. Set UPDATE MATCHED GROUPS = ENABLE

  14. Set Convert Group Options with default settings:

    1. DOMAIN LOCAL GROUPS = DOMAIN LOCAL

    2. GLOBAL GROUPS = GLOBAL

    3. UNIVERSAL GROUPS = UNIVERSAL

  15. Click Next

  16. Set CREATE NEW CONTACTS AS = AS-IS

  17. Set UPDATE CREATED CONTACTS = ENABLE

  18. Set UPDATE MATCHED CONTACTS = ENABLE

  19. Click Next

  20. Set CREATE NEW DEVICES AS = SKIP

  21. Set UPDATE CREATED CONTACTS = DISABLE

  22. Set UPDATE MATCHED CONTACTS = DISABLE

  23. Click Next

  24. Enter a default password, Click Next

  25. Check SYNCHRONIZE SID HISTORY checkbox, Click Next

  26. Under mappings, we can leave the settings as default or update them based on your project requirements.

  27. Click Next

  28. Click Finish

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen