ADDED TO KB 260 - Configuring Active Directory (AD) User ID for UnitySync account
Created: 2012-04-20 08:09:59Modified: 2019-07-10 15:08:54
Tags: Active Directory UnitySync
Configuring Active Directory Login ID
Please see UnitySync for Active Directory 101 for an introduction to how UnitySync works with AD.
Setting up a UnitySync Account
You will need to create an account that will be used by our programs to read and/or write to your directory. It is preferred that your UnitySync credentials be granted domain admin priveleges; if you are not able to provide domain admin, apply Special Permissions as outlined in this knowledge base article. Additionally, you may encounter a few other issues if you are unable to use a domain admin account. See the article which outlines these potential concerns.
- Launch Active Directory Users and Computers (AD U&C).
- Open the tree until you find the appropriate container.
- Right-click on OU and select New/User.
- Enter the appropriate account information.
- Press Next
- You may use whatever password you like. We recommend checking “User cannot change password” and “Password never expires” to eliminate the need to maintain this account.
- Select Next, then Finish.
- You should now see the account you created in the appropriate OU.
- To add your new user to the Domain Admins group, double-click on the Domain Admin group in the Users container.
- Select Members, Look In: Entire Directory. Select your new user account and press Add.
User ID Syntax
Active Directory uses a ‘Domain Component’ structure for its user ID. When you setup Active Directory you assigned an internet domain name to it (i.e. dirwiz.com). An example of a user ID would be: UnitySync@dirwiz.com