Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Active Directory

Users can be imported from Active Directory using CredoID Active Directory import module.

How to import users from Active Directory

User Binding

  1. Navigate to "Users " tab.
  2. Click "Import" button:
  3. Active directory settings window will appear:
    • Save as scheduled import - save current import as scheduled import, which can be executed periodically. More information can be found at "Automation → Imports".
    • Primary key - select primary key (First and Last name or Employee number). Primary keys must have unique values.
    • Mode:

      ModeDescription
      OverwriteAdd new users and Overwrite existing user data at CredoID.  If user already exists, all user data is updated according to import source.
      AppendAdd new users and add data to existing user if existing user data fields was empty before import.
      SynchronizeSame as "
      Append
      Overwrite". User from CredoID are deleted if  doesn't exists at import source.


    • LDAP Path - full path of Active directory (example: ldap://1.2.3.4:389/OU=users,DC=midpoint)

    • LDAP group path -  full path of Active directory group. Users existing in this group will be assigned with access level, after binding groups to access level (example: ldap://1.2.3.4:389/OU=groups,DC=midpoint).
    • Username - user name for LDAP login.
    • Password - password for LDAP login.
  4. After entering all required data, click "BINDINGS" button.
  5. If connection to LDAP server is successful, "Import bindings" window will appear:
    • CredoID column - represents user field in CredoID.
    • Attribute - select binding field form Active Directory available user fields.*

      Info
      titleRequirements for Active Directory fields
      • All fields must be single valued except locations and identifications.
      • Activation/Expiration fields require to follow ISO 8601 date and time format.
      • Identifications fields must follow one of formats:
        1. as card/pin string: cardbits_facilitycode_cardnumber_pin (example: 26_10_12345_1234)
        2. as JSON string:
          {

              "CardNumber": "12345",

              "FacilityCode": "10",

              "VisibleNumber": "12345",

              "CardFormatBits": 26,

              "PinCode": "1234",

              "LicensePlate": "MDP23"

          }


  6. Click "Group binding".
  7. Select access level on the right column, which will be applied to available Active directory group from left column.