Synchronization mode - Active Directory / Open Directory / LDAP

Click Admin > Server Task > Static Group Synchronization > New.

icon_section Basic

In this section, you can enter basic information about a task, such as a Name and Description (optional). You can also select from the following task trigger settings:

Run task immediately after finish - Select this option to have the task run automatically after you click Finish.

Configure trigger - Select this option to enable the Trigger section, where you can configure trigger settings.

To set the trigger later, leave this check box deselected.

 

icon_section Settings

Common Settings

Click Select under Static Group Name - by default, the executing user's home group will be used for synchronized computers . Alternatively you can create a New Static Group.

Object to synchronize - Either Computers and Groups, or Only Computers.

Computer creation collision handling - If the synchronization adds computers that are already members of the Static Group, you can select a conflict resolution method:

oSkip (synchronized computers will not be added)

oMove (new computers will be moved to a subgroup)

oDuplicate (new computer is created with modified name)

Computer extinction handling - If a computer no longer exists, you can either Remove this computer or Skip it.

Group extinction handling - If a group no longer exists, you can either Remove this group or Skip it.

Synchonization mode - Active Directory / Open Directory / LDAP

Server connection settings

Server - Type the Servername or IP address of your domain controller.

Login - Type the login credentials for your domain controller in the format DOMAIN\username.

Password - Type the password used to log onto your domain controller.

Use LDAP Parameters - If you want to use LDAP, select the check box next to Use LDAP instead of Active Directory and enter specific attributes to match your server. Or, you can select Presets by clicking Custom. The following attributes will be populated automatically:

oActive Directory - Click Browse next to Distinguished Name. Your Active Directory tree will be displayed. Select the top entry to sync all groups with ERA, or select only the specific groups that you want to add. Click OK when you are finished.

oMac OS X Server Open Directory (Computer Host Names)

oMac OS X Server Open Directory (Computer IP Addresses)

oOpenLDAP with Samba computer records - For setting up the parameters DNS name in Active Directory.

oWhen using LDAP and Active Directory preset, you can populate computer details with attributes from your Active Directory structure. Only attributes of the type DirectoryString can be used. You can use a tool (for example ADExplorer) to inspect the attributes on your Domain Controller. See the corresponding fields in the table below:

Computer details fields

Synchronization task fields

Name

Computer Hostname Attribute

Description

Computer Description Attribute

Synchronization settings

Distinguished name - Path (Distinguished Name) to the node in the Active Directory tree. Leaving this option empty will synchronize the entire AD tree.

Excluded distinguished name(s) - You can choose to exclude (ignore) specific nodes in the Active Directory tree.

Ignore disabled computers (only in active directory) - You can choose to ignore computers disabled in active directory (the task will skip these computers).

 

validation-status-icon-warning IMPORTANT

If after clicking Browse you get the error: Server not find in Kerberos database use server's AD FQDN instead of IP address.

icon_section Trigger

The Trigger section contains information about the trigger(s) which would run a task. Each Server Task can have up to one trigger. Each trigger can run only one Server Task. If Configure trigger is not selected in the Basic section, a trigger is not created. A task can be created without trigger. Such a task can be run afterward manually or a trigger can be added later.
 

icon_section Advanced Settings - Throttling

By setting Throttling, you can set advanced rules for the created trigger. Setting throttling is optional.
 

icon_section Summary

All configured options are displayed here. Review the settings and click Finish if they are ok. The task is now created and ready to be used.