Configuring Active Directory Sync Profiles

If your organization chooses to use Active Directory authentication as its authentication method for ServiceDesk, you can configure Active Directory sync profiles. You can use these sync profiles to target an entire Active Directory domain, organizational units and groups, or specific LDAP queries.
After you configure your Active Directory sync profiles, ServiceDesk can synchronize these sync profiles with Active Directory. During synchronization, ServiceDesk can obtain new and updated users and organizational units and groups.
After you configure your Active Directory sync profiles, you can add, edit, or delete your Active Directory server connections, sync profile schedules, and sync profiles. You can manage your Active Directory server connections in Workflow Explorer. You can manage your Active Directory sync profile schedules and sync profiles in ServiceDesk.
Process for configuring an Active Directory sync profile
Step
Action
Description
Step 1
Add Active Directory server connections.
In Workflow Explorer, you can connect ServiceDesk with your Active Directory servers.
Step 2
Select
Active Directory Authentication
as the authentication type.
In ServiceDesk, you can select Active Directory as your authentication method.
Note that after you select Active Directory as your authentication method, you do not need to do it again. Active Directory is now your authentication method.
Step 3
Add automatic sync profile schedules.
In ServiceDesk, you can add automatic Active Directory sync profile schedules.
When adding your Active Directory sync profiles, you can use these schedules to schedule the following synchronizations:
  • Update synchronization
  • Full synchronization
Step 4
Add Active Directory sync profiles.
In ServiceDesk, you can add sync profiles for your Active Directory server connections.
Step 5
(Optional) Test an Active Directory server connection.
In ServiceDesk, you can test each ServiceDesk to Active Directory server connection.
Step 6
(Optional) Manually perform a full synchronization for an Active Directory sync profile.
In ServiceDesk, you can manually run full synchronization for the Active Directory sync profiles that you specify.
Step 7
(Optional) Manually perform a full Active Directory synchronization for all Active Directory sync profiles.
In ServiceDesk, you can manually perform full synchronization for all your Active Directory sync profiles.
Step 8
(Optional) Check the status of an Active Directory sync profile synchronization.
In ServiceDesk, you can view information about the users and organizational units and groups that are synchronized. You can also view the status of the Active Directory sync profile synchronization.
Step 9
Assign permissions to your imported groups.
By default, the imported groups are added to the All Users group. Therefore your imported groups have All User permissions.
You must assign your Active Directory groups additional permissions.