MicroStrategy ONE
Add Microsoft Active Directory Information to MicroStrategy Identity and Synchronize Users
- Return to the Identity Agent configuration page in MicroStrategy Identity Manager. When the Identity Agent successfully connects to your Microsoft Active Directory server, the status displays as Connected. Click Next.
- In the Domain field, type the LDAP domain for your Microsoft Active Directory server.
-
In the Root field, type the LDAP root configuration for your Microsoft Active Directory system. This is where MicroStrategy Identity looks for the groups and organizational units to synchronize with your MicroStrategy Identity Network. For example:
OU=Example Organization,DC=DomainController3,DC=DomainController2,DC=DomainController1
.To add a load balancer between the Identity Agent and Microsoft Active Directory server, make sure that the Identity Agent connects to the same Microsoft Active Directory server persistently. Otherwise, the Identity Agent will not detect new users added to Microsoft Active Directory.
- Click Next.
- You must map the user information in Microsoft Active Directory to the user information that is synchronized with MicroStrategy Identity. To do this, for each User Info value, select the Microsoft Active Directory field that corresponds to that value by choosing the field from the Available Active Directory Attributes drop-down list, as follows:
- LDAP Info: The LDAP keys used to integrate your users with your Identity Network. The LDAP keys provided here are the keys that you want MicroStrategy Identity to obtain. Separate each value with a comma. For example,
givenName
,cn
,sn
,mail
,title
,memberOf
. - First Name: The LDAP key used to store users' first names. Default:
givenName
. - Last Name: The LDAP key used to store users' last names. Default:
sn
. - Full Name: The LDAP key used to store users' full names. Default:
cn
. - Title: The LDAP key used to store users' job titles. Default:
title
. - Email: The LDAP key used to store users' email addresses. Default:
mail
. - Email Groups: The LDAP key used to store the email groups a user is a member of. Default:
memberOf
.
- LDAP Info: The LDAP keys used to integrate your users with your Identity Network. The LDAP keys provided here are the keys that you want MicroStrategy Identity to obtain. Separate each value with a comma. For example,
- Optionally, you can synchronize additional information from your Microsoft Active Directory system with MicroStrategy Identity. For example, you can include profile photos, as described in Including Profile Photos in Microsoft Active Directory. As another example, you can include information about each user that is displayed on the user's badge, as described in Displaying Additional User Information on a Badge. Do the following:
- Click Add.
- From the User Info drop-down list, select a name for the user information that you want to synchronize with MicroStrategy Identity. You can also add a custom name. To do this, click Add New. Enter a name for the user information that you want to synchronize, then press ENTER.
- From the Available Active Directory Attributes drop-down list, select the Microsoft Active Directory field that corresponds to the user information that you want to synchronize. For example, if you add a field for Photo URL, select the Microsoft Active Directory field that contains information about the location of users' profile photos.
- In the LDAP Info field, add the configuration value to the list of values. Separate it from the existing values with a comma. For example,
givenName
,cn
,sn
,mail
,title
,memberOf,extensionAttribute1
.
- Click Next to save your changes and apply the Microsoft Active Directory mapping information.
- Select each group or organizational unit that you want to import into your MicroStrategy Identity Network. All users included in these groups or organizational units will be added to your Identity Network.
- After you have selected the groups or organizational units to add, click Import. Review the confirmation message, then click Yes.
- If you have not configured MicroStrategy Identity to automatically send badges when you import users (see Enabling badge invitations to be sent automatically), you must manually send badges to your users:
- Under User Management, click Users.
- Select the check box next to each user who you want to send a badge to.
- Click Send Badges, then click Send on the confirmation message. Badge invitations are sent to the users listed, that include links and instructions for users to download the MicroStrategy Badge app and their respective badge on mobile devices.