ADDED TO KB 260 - Configuring Active Directory (AD) User ID for UnitySync account

Configuring Active Directory Login ID

Please see UnitySync for Active Directory 101 for an introduction to how UnitySync works with AD.

Setting up a UnitySync Account

You will need to create an account that will be used by our programs to read and/or write to your directory. It is preferred that your UnitySync credentials be granted domain admin priveleges; if you are not able to provide domain admin, apply Special Permissions as outlined in this knowledge base article. Additionally, you may encounter a few other issues if you are unable to use a domain admin account. See the article which outlines these potential concerns.

• Launch Active Directory Users and Computers (AD U&C).
• Open the tree until you find the appropriate container.
• Right-click on OU and select New/User.
• Enter the appropriate account information.
• Press Next
• You may use whatever password you like. We recommend checking “User cannot change password” and “Password never expires” to eliminate the need to maintain this account.
• Select Next, then Finish.
• You should now see the account you created in the appropriate OU.
• To add your new user to the Domain Admins group, double-click on the Domain Admin group in the Users container.
• Select Members, Look In: Entire Directory. Select your new user account and press Add.

User ID Syntax

Active Directory uses a ‘Domain Component’ structure for its user ID. When you setup Active Directory you assigned an internet domain name to it (i.e. dirwiz.com). An example of a user ID would be: UnitySync@dirwiz.com