13.3 Local user database: external authentication and import of accounts
197
Automatic import of user accounts from Active Directory
If Active Directory is used, automatic import of user accounts can be applied. Specific
WinRoute parameters (such as access rights, content rules, data transfer quotas, etc.)
can be set by using the template for the local user database (see chapter 13.1) or/and
they can be defined individually for special accounts. A corresponding user account will
be imported upon the first login of the user to WinRoute.
Note: This type of user accounts import should, above all, help to keep compatibility with
older versions of WinRoute. It is much easier and more recommended to use transparent
support for Active Directory (domain mapping — refer to chapter 13.4).
User accounts will be imported from the domain specified in the Active Directory domain
name entry. Click Configure automatic import to set parameters for this function.
Figure 13.10 Configuration of automatic import of user accounts from Active Directory
For imports of accounts, it is necessary that WinRoute knows the domain server of the
corresponding Active Directory domain. WinRoute can either detect it automatically or
it can always connect to a specified server. The automatic connection to the first server
available increases reliability of the connection and eliminates problems in cases when
a domain controller fails. The other option (specification of a controller) is recommended
for domains with one server only (speeds the process up).
It is also necessary to enter login data of a user with read rights for the Active Directory
database (any user account belonging to the corresponding domain).