Dynamic population with directory server

The members and subgroups of a group can be managed by a directory server through directory services such as the Microsoft Active Directory. Directory services are repositories for information about network-based entities, such as applications, files, printers, and people. They are important because they provide a consistent way to name, describe, locate, access, manage, and secure information about these resources. Many vendors build specialised repositories or directory services into their applications to enable the specific functionality their customers require. As such, enterprise class directories take an important step towards the consolidation of corporate directories by offering standards-based interfaces allowing for interoperability and centralised directory management. The directory service is based on a secure directory database containing user IDs, passwords, access rights, and organizational information. The directory database can be automatically replicated to multiple locations for backup reliability, load-balancing performance, and reduced network impact. In addition, with one logon, users can access a globe-spanning network - even when dialing in remotely or accessing the network over the Internet.

The operations to manage groups that are dynamically populated with directory servers include:

Related topics

Dynamic-population-with-queries

Dynamic-population-with-compliance-rules

The Directory Server subnode is located under: Administrator Groups, Device Groups or User Groups > Your Group > Dynamic Population > Directory Server .

Note

If you manage your group through a directory server you may not manually create or add objects to this group anymore. Neither can you assign a directory server to manage this group, if the group already has members, or is assigned to a query or a compliance rule.

It is possible to synchronize devices which move between different domains.

The view of the directory server is structured as follows:

  • Directory Server: Displays the name of the directory server.
  • Entry: Displays the Base DN and User entries of the directory server.
  • Time of Assignment: Displays the date and time at which the device group was synchronized for the last time with the directory server.
  • Activation: Displays the condition on which the synchronization with the assigned directory server will be started.
  • Schedule: Displays the frequency with which the synchronization with the assigned directory server will be executed.
  • Termination: Displays when the synchronization with the assigned directory server is scheduled to be terminated, that is, when the synchronization is to be run for the definitely last time of the current scheduling cycle.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*