Kerio Tech Firewall6 Network Router User Manual


 
13.4 Active Directory domains mapping
199
Figure 13.12 Import of accounts from Active Directory
13.4 Active Directory domains mapping
In WinRoute, it is possible to directly use user accounts from one or more Active Direc-
tory domain(s). This feature is called either transparent support for Active Directory or
Active Directory domain(s) mapping. The main benefit of this feature is that the entire
administration of all user accounts and groups is maintained in Active Directory only
(using standard system tools). In WinRoute, a template can be defined for each domain
that will be used to set specific WinRoute parameters for user accounts (access rights,
data transfer quotas, content rules see chapter
13.1). If needed, these parameters can
also be set individually for any accounts.
Note: The Windows NT domain cannot be mapped as described. In case of the Windows
NT domain, it is recommended to import user accounts to the local user database (refer
to 13.3)
Domain mapping requirements
The following conditions must be met to enable smooth functionality of user authenti-
cation through Active Directory domains:
For mapping of one domain:
1. The WinRoute host must be a member of the corresponding Active Directory do-
main.
2. The Active Directory domain controller (server) must be set as the primary DNS
server.