Microsoft Active Directory
Overview
Microsoft Active Directory is a directory service for Windows domains to enable network authentication and authorization.
Available Integrations
| Service | Supported Asset Type(s) | Integration Type |
|---|---|---|
| Active Directory – Devices | Devices | Source |
| Active Directory – Users | Users | Source |
Please review the configuration instructions in the section below before setting up permissions for apps.
Configuration
-
Install a runner: Follow our instructions to install a runner.
- Requirements:
- TCP/IP 389 from Runner to the configured domain controller
- TCP 636 from Runner to the configured domain controller if using secure LDAP
Note: An on-premises Runner should be selected for this configuration.
- Requirements:
-
Choose an Access Schema: A schema is a configuration template that defines a specific way to connect, authenticate, and interact with a source. The following are the available schemas
- Single Domain: Will retrieve AD computers from a single domain and Domain Controller
- Auto-Discovery: Will retrieve AD computers from all domains identified via referrals
-
Configure the Access Schema:
Single Domain
| Field | Description | Example |
|---|---|---|
LDAP URL* | URL containing the IP or FQDN of a domain controller. (Utilize LDAPS for secure LDAP) | ldap://dc.acme.local |
| Skip TLS Certification Validation | Skip certificates validation when using a certificate that is self-signed or unable to be validated through a proper certificate authority. | |
Username* | Username of the configured user in UPN formatting (user@domain) | [email protected] |
Password* | Password configured for the defined user. | ***************** |
Domain* | Domain name to include the appropriate suffixes (.com or .local) | acme.local |
Auto-Discovery
| Field | Description | Example |
|---|---|---|
LDAP URL* | URL containing the IP or FQDN of a domain controller. (Utilize LDAPS for secure LDAP) | LDAP://dc.acme.local |
| Skip TLS Certification Validation | Skip certificates validation when using a certificate that is self-signed or unable to be validated through a proper certificate authority. | |
Username* | Username of the configured user in UPN formatting (user@domain) | [email protected] |
Password* | Password configured for the defined user. | ***************** |
root_domain* | The active directory root domain that you wish to | acme.local |
excluded_domains | comma separated list of domains to exclude from pulling | development.acme.local, contractor.acme.local |
-
Add an Integration: Select the integration(s) you'd like to add. See links for details on additional configuration required.
-
Configure General Information: OPTIONAL: You can use the following fields to provide additional information about your configuration.
| Field | Description | Title |
|---|---|---|
Name (optional) | Uniquely identifiable attribute of the configuration to delineate other similar configurations with the existing organization | DMZ network |
Contact Person (optional) | A placeholder to input a name or email address of a contact associated with the integration. | Jane Doe |
Link to Console (optional) | A placeholder to input a link to the console of the product sevco is integrating with for quick reference and access when configuring or editing the integration. | www.product.com/devices |
- Activate Config: Select "Activate" to enable this configuration and begin pulling data.
API Documentation
Active Directory LDAP Syntax Filters
Contact Us
If you're having problems configuring an Integration, or if you've found something wrong in this document, please email us at [email protected].
Updated 8 days ago