Chat now with support
Chat with Support

Binary Tree Directory Sync Pro for Notes 20.11 - Requirements and Installation Guide

Directory Sync Pro Match Only or Update Only Profile (no object creation)

3.1 Directory Sync Pro to SQL Server Access

Source

Target

Ports

Protocol

Directory Sync Pro

SQL Server holding the primary database

1433

TCP & UDP

Directory Sync Pro

SQL Server holding the logging database

1433

TCP & UDP

 

3.2 Directory Sync Pro Profile Specific Scenario Requirements

Source

Target

Ports

Protocol

Directory Sync Pro

Domain controllers

88, 389, 445, 3268

TCP (all)

UDP (88, 389)

Directory Sync Pro - Domino

SQL Database

1433, 1434

TCP (all)

UDP (88, 389)

* Port 445 only needs to be open to the Source Domain Controller during Directory Sync Pro Profile creation

Directory Sync Pro Profile with Create Only or Create/Update Matching Option

Source

Target

Ports

Protocol

Directory Sync Pro

Domain controllers

88, 139, 389, 445, 3268

TCP (all)

UDP (88, 389)

Directory Sync Pro - Domino

SQL Database

1433, 1434

TCP (all)

UDP (88, 389)

* Port 445 only needs to be open to the Source Domain Controller during Directory Sync Pro Profile creation

Directory Sync Pro Profile with Create Only or Create/Update Matching Option

3.1 Directory Sync Pro to SQL Server Access

Source

Target

Ports

Protocol

Directory Sync Pro

SQL Server holding the primary database

1433

TCP & UDP

Directory Sync Pro

SQL Server holding the logging database

1433

TCP & UDP

 

3.2 Directory Sync Pro Profile Specific Scenario Requirements

Directory Sync Pro Match Only or Update Only Profile (no object creation)

Source

Target

Ports

Protocol

Directory Sync Pro

Domain controllers

88, 389, 445, 3268

TCP (all)

UDP (88, 389)

Directory Sync Pro - Domino

SQL Database

1433, 1434

TCP (all)

UDP (88, 389)

* Port 445 only needs to be open to the Source Domain Controller during Directory Sync Pro Profile creation

Source

Target

Ports

Protocol

Directory Sync Pro

Domain controllers

88, 139, 389, 445, 3268

TCP (all)

UDP (88, 389)

Directory Sync Pro - Domino

SQL Database

1433, 1434

TCP (all)

UDP (88, 389)

* Port 445 only needs to be open to the Source Domain Controller during Directory Sync Pro Profile creation

Section 4. Directory Sync Pro Requirements

4.1 Directory Sync Pro Basic Installation Requirements

The Directory Sync Pro suite consists of the console and the Web service, and Directory Sync Pro software packages. Both packages will require access to Microsoft SQL Server. In most environments, all components of Directory Sync Pro will be installed on the Domino coex server and the Windows coex server.

Single Server Installation Requirements

Supported Operating Systems

  • Windows Server 2012 R2

  • Windows Server 2016

  • Windows Server 2019

SQL Server Requirements

  • SQL Server 2012 SP2 Express 64-bit, 2014, 2016, or 2017

  • SQL Server 2012 SP2 Express 64-bit Express is supported up to 5000 objects

  • SQL Management Studio must be installed

  • SQL must be configured to permit mixed authentication, and one local SQL authentication account must be created for Active Directory Pro and Directory Sync Pro to share.

Minimum Hardware Requirements

  • 2 CPU/vCPU

  • 6 GB RAM

  • 10 GB disk space, inclusive of the SQL install requirements

Additional Components

  • If your server is not internet connected, you will be required to install the following components prior to installing Active Directory Pro:

If you are planning to have a long-term co-existence (1 year+), we recommend using the following formula to determine if you should use a full edition of SQL Server with our products. This formula assumes High / Verbose logging turned on for all profiles = worst case scenario.

Formula: (Expected months of co-existence x Users) x Profiles = N

If calculated N >= 12000 then we recommend full edition of SQL Server.

  • Low example: 3 months x 300 users x 1 profile = 900

  • Medium example: 6 months x 1000 users x 2 profiles = 12000

  • High example: 12 months x 3000 users x 5 profiles = 180,000

  • Extreme example: 14 months x 6000 users x 7 profiles = 588,000

 

4.2 Networking Requirements

Domain Controller Access

For most scenarios, Directory Sync Pro requires access to at least one read/write domain controller running Windows 2003 SP2 or newer in each source and target Active Directory domain. For fault tolerance, Binary Tree recommends at least two domain controllers in each source and target domain.

Network/Firewall Requirements

Directory Sync Pro requires the following network ports to enable full functionality:

Source

Target

Port/Protocol

Directory Sync Pro Server

Source and Target Domain Controllers running Windows Server 2003

135, 137, 389, 445, 1024-5000 (TCP)

389 (UDP)

Directory Sync Pro Server

Source and Target Domain Controllers running Windows Server 2008 or newer

135, 137, 389, 445, 49152-65535 (TCP)

389 (UDP)

Target domain controllers listed in the Target DCs tab

Domain controller in the source environment holding the PDC Emulator Active Directory FSMO role

135, 137, 139, 389, 445, 3268 and 49152-65535 (TCP)

389 (UDP)

 

4.3 Service Account Requirements

Directory Sync Pro requires the following user account permissions and privileges:One service account with read/write access to all organizational units (OUs) containing user, group, and computer objects in the source Active Directory to be migrated to the target environment.

  • One service account with administrative rights on the target domain(s)

    • If administrative rights cannot be granted, the service account requires the following rights:

      • The ability to create and modify user objects in the desired OUs in the target Active Directory environment.

      • Read Permissions to the configuration container in Active Directory

4.4 Browser Requirements

Directory Sync Pro uses a browser-based user interface. We recommend using Chrome v48.0 (or newer) or Firefox v44.0 (or newer) for the best browser experience.

The browser Download settings should be configured to ask where you want to save the files before downloading.

4.5 Password Requirements

Directory Sync Pro do not validate the password policies present within your domains. Verify that the password entered as the Default Password complies with the password policy of your target environment. Objects will fail to be created if the password violates that policy.

4.6 Internet Requirement for Online Help and Video Tutorials

An internet connection is required to access the online help system and video tutorials.

  • Within the Directory Sync Pro interface, the online help system can be accessed by clicking “HELP” in the pull-down menu and the video tutorials can be accessed by clicking the icons found throughout the application. Relevant topics in the online help system can be found using the Search bar at top of the page or navigated to while viewing topics by clicking on a topic in the list on the left side of the page. Individual topics can be printed by using the browser’s Print function.

  • The online help system and video tutorials can be accessed outside the Directory Sync Pro and Directory Sync Pro interface at https://help.binarytree.com/dirsyncpro-dts/19.07/

  • Windows Server operating systems will need to have the Desktop Experience feature (or a video codec) installed to view the video tutorials.

4.1 Directory Sync Pro Basic Installation Requirements

The Directory Sync Pro suite consists of the console and the Web service, and Directory Sync Pro software packages. Both packages will require access to Microsoft SQL Server. In most environments, all components of Directory Sync Pro will be installed on the Domino coex server and the Windows coex server.

Single Server Installation Requirements

Supported Operating Systems

  • Windows Server 2012 R2

  • Windows Server 2016

  • Windows Server 2019

SQL Server Requirements

  • SQL Server 2012 SP2 Express 64-bit, 2014, 2016, or 2017

  • SQL Server 2012 SP2 Express 64-bit Express is supported up to 5000 objects

  • SQL Management Studio must be installed

  • SQL must be configured to permit mixed authentication, and one local SQL authentication account must be created for Active Directory Pro and Directory Sync Pro to share.

Minimum Hardware Requirements

  • 2 CPU/vCPU

  • 6 GB RAM

  • 10 GB disk space, inclusive of the SQL install requirements

Additional Components

  • If your server is not internet connected, you will be required to install the following components prior to installing Active Directory Pro:

If you are planning to have a long-term co-existence (1 year+), we recommend using the following formula to determine if you should use a full edition of SQL Server with our products. This formula assumes High / Verbose logging turned on for all profiles = worst case scenario.

Formula: (Expected months of co-existence x Users) x Profiles = N

If calculated N >= 12000 then we recommend full edition of SQL Server.

  • Low example: 3 months x 300 users x 1 profile = 900

  • Medium example: 6 months x 1000 users x 2 profiles = 12000

  • High example: 12 months x 3000 users x 5 profiles = 180,000

  • Extreme example: 14 months x 6000 users x 7 profiles = 588,000

 

4.2 Networking Requirements

Domain Controller Access

For most scenarios, Directory Sync Pro requires access to at least one read/write domain controller running Windows 2003 SP2 or newer in each source and target Active Directory domain. For fault tolerance, Binary Tree recommends at least two domain controllers in each source and target domain.

Network/Firewall Requirements

Directory Sync Pro requires the following network ports to enable full functionality:

Source

Target

Port/Protocol

Directory Sync Pro Server

Source and Target Domain Controllers running Windows Server 2003

135, 137, 389, 445, 1024-5000 (TCP)

389 (UDP)

Directory Sync Pro Server

Source and Target Domain Controllers running Windows Server 2008 or newer

135, 137, 389, 445, 49152-65535 (TCP)

389 (UDP)

Target domain controllers listed in the Target DCs tab

Domain controller in the source environment holding the PDC Emulator Active Directory FSMO role

135, 137, 139, 389, 445, 3268 and 49152-65535 (TCP)

389 (UDP)

 

4.3 Service Account Requirements

Directory Sync Pro requires the following user account permissions and privileges:One service account with read/write access to all organizational units (OUs) containing user, group, and computer objects in the source Active Directory to be migrated to the target environment.

  • One service account with administrative rights on the target domain(s)

    • If administrative rights cannot be granted, the service account requires the following rights:

      • The ability to create and modify user objects in the desired OUs in the target Active Directory environment.

      • Read Permissions to the configuration container in Active Directory

4.4 Browser Requirements

Directory Sync Pro uses a browser-based user interface. We recommend using Chrome v48.0 (or newer) or Firefox v44.0 (or newer) for the best browser experience.

The browser Download settings should be configured to ask where you want to save the files before downloading.

4.5 Password Requirements

Directory Sync Pro do not validate the password policies present within your domains. Verify that the password entered as the Default Password complies with the password policy of your target environment. Objects will fail to be created if the password violates that policy.

4.6 Internet Requirement for Online Help and Video Tutorials

An internet connection is required to access the online help system and video tutorials.

  • Within the Directory Sync Pro interface, the online help system can be accessed by clicking “HELP” in the pull-down menu and the video tutorials can be accessed by clicking the icons found throughout the application. Relevant topics in the online help system can be found using the Search bar at top of the page or navigated to while viewing topics by clicking on a topic in the list on the left side of the page. Individual topics can be printed by using the browser’s Print function.

  • The online help system and video tutorials can be accessed outside the Directory Sync Pro and Directory Sync Pro interface at https://help.binarytree.com/dirsyncpro-dts/19.07/

  • Windows Server operating systems will need to have the Desktop Experience feature (or a video codec) installed to view the video tutorials.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating