立即与支持人员聊天
与支持团队交流

Identity Manager 9.2 - Administration Guide for Connecting to Active Directory

Managing Active Directory environments Synchronizing an Active Directory environment
Setting up initial synchronization with an Active Directory domain Adjusting the synchronization configuration for Active Directory environments Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Managing Active Directory user accounts and identities
Account definitions for Active Directory user accounts and Active Directory contacts Assigning identities automatically to Active Directory user accounts Supported user account types Updating identities when Active Directory user account are modified Automatic creation of departments and locations based on user account information Specifying deferred deletion for Active Directory user accounts and Active Directory contacts
Managing memberships in Active Directory groups Login credentials for Active Directory user accounts Mapping Active Directory objects in One Identity Manager
Active Directory domains Active Directory container structures Active Directory user accounts Active Directory contacts Active Directory groups Active Directory computers Active Directory security IDs Active Directory printers Active Directory sites Reports about Active Directory objects
Handling of Active Directory objects in the Web Portal Basic data for managing an Active Directory environment Configuration parameters for managing an Active Directory environment Default project template for Active Directory Processing methods of Active Directory system objects Active Directory connector settings

Displaying Azure Active Directory groups for Active Directory groups

NOTE: This function is only available if the Azure Active Directory Module is installed.

The Azure Active Directory group linked to an Active Directory group is displayed on the overview form.

To display the Azure Active Directory group for an Active Directory group

  1. In the Manager, select the Active Directory > Groups category.

  2. Select the group in the result list.

  3. Select the Active Directory group overview task.

    The Azure Active Directory group form element shows which group is linked to it.

For more information about Azure Active Directory, see the One Identity Manager Administration Guide for Connecting to Azure Active Directory.

Active Directory computers

Computers and servers are loaded into One Identity Manager by synchronization. You can create new computers or edit existing ones.

To create a computer

  1. In the Manager, select the Active Directory > Computers category.

  2. Click in the result list.

  3. Edit the computer's main data.

  4. Save the changes.

To edit computer main data

  1. In the Manager, select the Active Directory > Computers category.
  2. In the result list, select the computer and run the Change main data task.

  3. Edit the computer's main data.

  4. Save the changes.
Related topics

Main data for Active Directory computers

Enter the following data for a computer.

Table 53: Computer main data
Property Description

Device

The computer is connected to this device. Specify a new device using the button next to the menu.

For more information about device management, see the One Identity Manager Identity Management Base Module Administration Guide.

Name

Computer identifier

Domain

Domain in which to create the computer.

Container

Container in which to create the computer. The distinguished name of the computer is determined by a template when the container is selected.

Primary group

Computer's primary group. Then, only groups that are already assigned to the computer can be selected.

Account manager

Manager responsible for the computer.

To specify an account manager

  1. Click next to the field.
  2. In the Table menu, select the table that maps the account manager.
  3. In the Account manager menu, select the manager.
  4. Click OK.

Computer name (pre Win2000)

Pre-Windows 2000 computer name. Name of the computer for the previous version of Windows 2000.

DNS host name

DNS name of the computer.

Function

Function of the computer in the network. The functions Workstation, Server and Domain Controller are available for selection.

Operating system

Operating system identifier.

Operating system version

Version number of the operating system.

Service pack operating system

Service pack identifier.

Hotfix operating system

Hotfix identifier.

Protected from accidental deletion

Specifies whether to protect the computer against accidental deletion. If the option is set, the permissions for deleting the computer are removed in Active Directory. The computer cannot be deleted or moved.

Performing computer diagnostics

You can use the following tasks to run a diagnosis if the computer can be found on the network and if you have sufficient access permissions.

To run diagnostics for a computer

  1. In the Manager, select the Active Directory > Computers category.

  2. Select the computer and run the required diagnosis task from the task view.

    • Diagnosis - browse: This opens a Windows Explorer window. All shares for the selected computer are shown.

    • Diagnosis - Windows diagnosis: This opens the computer's system information (winmsd.exe or msinfo32.exe).

    • Windows computer administration: This opens the Microsoft Management console for computer administration for the selected computer. For example, here you can see the result log or the local user administration.

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级