Redbex allows synchronizing users with the members of a specified Active Directory user group. If you plan to use Active Directory Authentication this will allow you to automatically give all users of that Active Directory user group access to the Redbex system.
To enable this functionality, the global settings under Active Directory group must be set.
Active directory synchronization can be manually triggered from the used client software or can be automated using the Active Directory Synchronization job type.
For the actual synchronization of users the Application Server will try to access the Active Directory Lightweight Directory Services (ADLDS) and will look up the members of the specified user group. For accessing ADLDS the Application Server will either use LDAP or LDAPS protocol, depending on your Global Settings.
For all Active Directory users in the specified Active Directory user group that are not locked and have a valid e-mail address set the Application Server will check if there is a Redbex user account with the same user name.
•If no, a new Redbex user account with that name will be created. All properties of the newly created account will be set to the properties found for the Active directory user. The authentication type for the newly created Redbex account will be set to Active directory
•If yes, all properties of the existing Redbex users will be modified to match the properties in the Active Directory. The Redbex user's authentication type will be set to Active directory.
If the Global setting Keep Local is not set all Redbex user accounts where no corresponding Active Directory group member can be found will be deactivated. If you want to work with a mixture of different authentication types (Active Directory and local) you shall therefore set the Global setting Keep Local to true.
The Manager account created during installation of the Redbex Application Server Database will never be deactivated by the synchronization irrespective of the Keep Local setting.
Synchronized information
When creating new Redbex users from an Active Directory user, or when updating existing users Redbex will automatically fill in the following data with the equivalent properties of the Active Directory user account.
•Username
•First name
•Middle name
•Last name
•Pre-nominal letters
•Description
•Phone number
•Cell phone number
•Address
•Company
•Department
•Position
Redbex will also set the following properties for users created during the synchronization process:
•Gender: Will be set to Undefined
•Authentication type: Will be set to Active Directory depending on the option with which synchronization is taking place
•Culture: Will be set to the culture of the user who performs the synchronization
•Publish extended information: Will be set to false
