Connect to Microsoft Active Directory
Install at least one instance of the BlackBerry Protect Connectivity Node.
- In the BlackBerry Protect Connectivity Node console (http:/localhost:8088), click General settings > Company directory.
- Click
.
- Select Microsoft Active Directory.
- In the Connection name field, type a name for this company directory connection.
- In the Username field, type the username of the Microsoft Active Directory account.
- In the Domain field, type the FQDN of the domain that hosts Microsoft Active Directory. For example, domain.example.com.
- In the Password field, type the password of the Microsoft Active Directory account.
- In the Domain controller discovery drop-down list, click one of the following:
- If you want to use automatic discovery, click Automatic.
- If you want to specify the domain controller computer, click Select from list below. Click
and type the FQDN of the computer. Repeat this step to add more computers.
- In the Global catalog search base field, type the search base that you want to access (for example, OU=Users,DC=example,DC=com). To search the entire Global Catalog, leave the field blank.
- In the Global catalog discovery drop-down list, click one of the following: .
- If you want to use automatic catalog discovery, click Automatic.
- If you want to specify the catalog computer, click Select from list below. Click
and type the FQDN of the computer. If necessary, repeat this step to specify more computers
- If you want to enable support for linked Microsoft Exchange mailboxes, in the Support for linked Microsoft Exchange mailboxes drop-down list, click Yes. To configure the Microsoft Active Directory account for each forest that you want to access, in the List of account forests section, click
. Specify the forest name, user domain name (the user can belong to any domain in the account forest), username, and password.
- To synchronize more user details from your company directory, select the Synchronize additional user details check box. The additional details include company name and office phone.
- Click Save.
- If you want to configure automatic onboarding for Aurora Endpoint Security, see Configure onboarding and offboarding.
- If you want to add a directory synchronization schedule, see Configure directory synchronization schedules.
- If you have more than one instance of the BlackBerry Protect Connectivity Node, you can copy directory connection configurations from one instance into the others.