立即与支持人员聊天
与支持团队交流

Active Roles 8.2 - Administration Guide

Introduction Getting started with Active Roles Configuring rule-based administrative views Configuring role-based administration Configuring rule-based autoprovisioning and deprovisioning
Configuring Provisioning Policy Objects
User Logon Name Generation E-mail Alias Generation Exchange Mailbox AutoProvisioning Group Membership AutoProvisioning Home Folder AutoProvisioning Property Generation and Validation Script Execution O365 and Azure Tenant Selection AutoProvisioning in SaaS products
Configuring Deprovisioning Policy Objects
User Account Deprovisioning Group Membership Removal User Account Relocation Exchange Mailbox Deprovisioning Home Folder Deprovisioning User Account Permanent Deletion Office 365 Licenses Retention Group Object Deprovisioning Group Object Relocation Group Object Permanent Deletion Script Execution Notification Distribution Report Distribution
Configuring entry types Configuring a Container Deletion Prevention policy Configuring picture management rules Managing Policy Objects Checking for policy compliance Deprovisioning users or groups Restoring deprovisioned users or groups Configuring policy extensions
Using rule-based and role-based tools for granular administration Workflows
About workflow processes Workflow processing overview Workflow activities overview Configuring a workflow
Creating a workflow definition for a workflow Configuring workflow start conditions Configuring workflow parameters Adding activities to a workflow Configuring an Approval activity Configuring a Notification activity Configuring a Script activity Configuring an If-Else activity Configuring a Stop/Break activity Configuring an Add Report Section activity Configuring a Search activity Configuring CRUD activities Configuring a Save Object Properties activity Configuring a Modify Requested Changes activity Enabling or disabling an activity Enabling or disabling a workflow Using the initialization script
Approval workflow Email-based approval Automation workflow Activity extensions
Temporal Group Memberships Group Family Dynamic groups Active Roles Reporting Management History Entitlement profile Recycle Bin AD LDS data management One Identity Starling Join and configuration through Active Roles Managing One Identity Starling Connect Configuring linked mailboxes with Exchange Resource Forest Management Configuring remote mailboxes for on-premises users Migrating Active Roles configuration with the Configuration Transfer Wizard Managing Skype for Business Server with Active Roles
About Skype for Business Server User Management Active Directory topologies supported by Skype for Business Server User Management User Management policy for Skype for Business Server User Management Master Account Management policy for Skype for Business Server User Management Access Templates for Skype for Business Server Configuring the Skype for Business Server User Management feature Managing Skype for Business Server users
Exchanging provisioning information with Active Roles SPML Provider Monitoring Active Roles with Management Pack for SCOM Configuring Active Roles for AWS Managed Microsoft AD Azure AD, Microsoft 365, and Exchange Online Management
Azure tenant types and environment types supported by Active Roles Using Active Roles to manage Azure AD objects Unified provisioning policy for Azure M365 Tenant Selection, Microsoft 365 License Selection, Microsoft 365 Roles Selection, and OneDrive provisioning Changes to Active Roles policies for cloud-only Azure objects
Managing the configuration of Active Roles
Connecting to the Administration Service Managed domains Using unmanaged domains Evaluating product usage Creating and using virtual attributes Examining client sessions Monitoring performance Customizing the Console Using Configuration Center Changing the Active Roles Admin account Enabling or disabling diagnostic logs Active Roles Log Viewer
SQL Server replication Using regular expressions Administrative Template Configuring federated authentication Communication ports and URLs used by Active Roles Integrating Active Roles with other products and services Active Roles Language Pack Active Roles Diagnostic Tools Active Roles Add-on Manager

Active Directory Assessment/Groups

  • Domain group statistics: Lists the number of groups in a given Active Directory domain, itemized by group type (security or distribution) and group scope (universal, global, or domain local). Allows you to view a list of all groups of a particular type and scope, along with detailed information about each group.

  • Group list with member statistics: Lists the groups defined in a given Active Directory domain, along with information on how many members each group contains. For every group, allows you to view a list of its members.

  • Group Hierarchy: Lists the groups defined in a given Active Directory domain, representing the group nesting structure in a tree-like view. For every group, allows you to view a list of its member groups, and to examine each group in detail.

  • Empty Groups: Lists the groups defined in a given Active Directory domain that have no members.

Active Directory Assessment/Group Membership

  • Group membership by group: For each group defined in a given Active Directory domain, lists the members of that group. Allows you to configure the list to include only members of a certain type (such as user, computer, or group), only direct members, or both direct members and members that belong to the group through group nesting.

  • Group membership by user: For each user account defined in a given Active Directory domain, lists the groups to which the user account belongs as a member. Allows you to configure the list to include only groups of a certain type and scope, only groups of which the user is a direct member, or both groups of which the user is a direct member and groups to which the user belongs through group nesting.

  • Users with domain administrative rights: For a given Active Directory domain, lists the user accounts that belong to the built-in Administrators group in that domain whether as direct members or as members of other groups nested into the Administrators group. Allows you to examine each of the listed accounts in detail.

Active Directory Assessment/Organizational Units

  • Member statistics by OU: Provides information on how many objects are held in each Organizational Unit. The list is split by object type, allowing you to view the number of objects of each individual type (such as the number of users, computers, groups, contacts, printers and shared folders). By clicking a number in the list you can examine the objects represented by that number.

  • Organizational Unit membership: For each Organizational Unit (OU), lists the objects held in that OU. The report is split by object type, allowing you to view the objects of each individual type in a separate list. You can view information about the following objects:

    • users

    • computers

    • groups

    • contacts

    • printers

    • shared folders

  • Organizational Unit hierarchy: Lists the Organizational Units (OUs) defined in a given Active Directory domain, representing the parent-child structure of OUs in a tree-like view. You can use this report to determine all OUs that are descendants of a particular OU, observing the entire tree of the OUs rooted in that OU.

Active Directory Assessment/Other Directory Objects

  • Active Directory Object Properties: Lists the objects that meet the conditions you specify. For each object, provides information about its properties, allowing you to choose the properties to be displayed.

  • Computer Accounts: Lists the computer accounts held in a given domain or container (Organizational Unit). You can filter the list by various characteristics (such as the creation date, status (enabled | disabled), or computer operating system) of computer accounts.

  • All discontinued computer accounts: Lists the computer accounts that are not in use for whatever reason (such as the accounts that are disabled, expired, or not used for logon during a certain time period), or the accounts with expired passwords. Also allows you to examine each account in detail.

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级