Active Directory Connection¶
Active Directory on Connect iPaaS uses a Lightweight Directory Access Protocol (LDAP) based authorization. By linking your Active Directory account with Connect iPaaS, you can authorize RoboMQ to perform operations to your Active Directory Domain Controller.
For Trigger¶
The user account you use for establishing the connection does not need any specific permission to read information from other users.
For Action¶
The Active Directory actions in Connect iPaaS include creating a user, update an attribute and disabling an account. Thus the user account you use to establish the connection must satisfy one of the following criteria:
- Belong to the security group "Domain Admin".
- Set up delegate control of this user under the target Organization Units (OU).
We at RoboMQ pay utmost attention to keep your account secure. See our Security and Privacy Policy to learn more about how RoboMQ handles your account access.
Create a Connection¶
In order to connect to Active Directory you must provide the details of the Active Directory server so that as a third party application, Connect iPaaS can connect and perform operations on it.
Connect iPaaS requires the following details in order to create a connection with your Active Directory.
- Connection Name - A user defined nomenclature for your connection. By default, the connect name is "Connection-DirectoryServiceAuth", you can edit and change the name as per your preferences.
- Host - The host name is the IP address of your Active Directory Server.
- Port - The TCP/IP port on which the Active Directory server is listening. Connect iPaaS will only establish the LDAP connection with your SSL port. (The default is 636)
- AD Domain (Dot annotation) - It is a collection of objects within a Active Directory network. An object can be a single user, a group of users or a hardware component, such as a computer or printer. Each domain holds a database containing object identity information. For example, if you put "xyz.com", Connect iPaaS will translate to "DC=xyz,DC=com" for backend processing.
- Username - The username has access to the Active Directory server.
- Password - The Password to access the Active Directory server.
