Create configuration

In order to setup synchronization you need to create a new configuration. Several configurations can exist in parallel. Each configuration maps users from specific group(s) in the Active Directory into the user registry. It is possible to change the mapping between attributes from Active Directory into the user registry properties.

Actions

Open Solution Manager / Security / Users / Active Directory User Integration Configuration

Create a new user integration configuration and:

1. Enter Configuration Id for the configuration. Simply a name for the configuration.
2. Enter Server Addresses and ports. Should be provided by your network administrator as described in Prepare Active Directory.
3. Enter Service Account and Password. Also provided from your network administrator.
4. All IFS Users will also get a database account with a password. This password is only needed if users are authenticated using database authentication. If you do not use database authentication select Database Authentication not allowed. This will also have the password generated to an anonymous string. When using database authentication you have the option to select random generated password or have the password created to the same as the user name. The password needs to be set later to what the user prefer.
5. Click on Save.
6. Enter Configuration IFS User Group. This user group will contain all users in IFS Applications that have been processed by the sync job for this configuration.
7. Add group to role mappings. Read more about Role mappings.
8. Review attribute mappings. Read more on how to Configure Mapping of Attributes.
9. Save configuration again.
10. Verify the setup by clicking the "Test configuration" button. This will connect to the Active Directory and make a test run synchronization without committing any transactions to the IFS Applications User Registry. Make sure that the number of users that qualify for synchronization is correct.