Cloud Gateways Switching WiFi Camera Security Door Access Integrations Accessory Tech Identity
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Phone Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
Cloud Gateways Switching WiFi Camera Security Door Access Integrations Accessory Tech Identity

Social

Facebook Twitter Youtube Instagram

Company

Careers Contact Us Investors

Training

Courses Calendar Trainers Become a Trainer

Tools

WiFiman UISP Design Center
  1. Ubiquiti Help Center
  2. UniFi
  3. Identity Enterprise
  4. Admin Guide - Third-Party Integration

UniFi Identity Enterprise - Integrate AD with UniFi Identity Enterprise

Admins can enable and configure Directory Integration to import users from Active Directory (AD) to UniFi Identity Enterprise and allow users to sign in to UniFi Identity Enterprise using their AD credentials.

Requirements

Before integrating your AD with UniFi Identity Enterprise, make sure:

  1. You have AD Domain Admin credentials.
  2. You have access to all Domain Controllers (DCs) or member servers in your AD domain.
  3. You are the Identity Enterprise Workspace Owner or Super Admin or have been assigned a custom role with permissions for AD/LDAP configuration and import.
  4. You have subscribed to the Identity Enterprise Standard Plan or have applied for a plan add-on.
    • Use your owner account to sign in to Identity Enterprise Manager (https://[your workspace domain].ui.com/cloud) and go to Settings > Plan & Billing to subscribe to the Identity Enterprise Standard Plan.
    • Use your owner account to sign in to Identity Enterprise Manager (https://[your workspace domain].ui.com/cloud) and go to Settings > Plan & Billing > Feature Usage > Apply for Plan Add-On to apply for a free trial of this feature.
  5. Your Identity Enterprise Agent has been updated to 1.54.6 or later.

Integrate AD with UniFi Identity Enterprise

  1. Go to your Identity Enterprise Manager > Organization > Directory Integration and click Add Directory or + New Directory based on whether this is the first time a directory has been added to UniFi Identity Enterprise.
  2. Fill in the required AD information.
    • Type: Select Active Directory.
    • Set Up on: Select the console on which your directory will run.
    • Hostname: Enter your AD hostname.
    • Use SSL Connection: Tick the checkbox based on your AD server’s security protocol.
    • Port: Enter your AD server’s port number.
    • Base DN: Enter your AD domain name. For example: dc=example,dc=com
    • Username and password: Enter your AD domain admin credentials. To obtain your username, please run the following command in your domain controller:
dsquery user -name [NAME]
  1. Click Add.
  2. Configure Provisioning and Integration Settings.

Configure Azure AD Domain Service in UniFi Identity Enterprise

  1. Refer to Microsoft's article for instructions on configuring secure LDAP for a Microsoft Entra Domain Services managed domain.
  2. Follow the steps in Integrate AD with UniFi Identity Enterprise above to integrate Entra ID with UniFi Identity Enterprise.
Was this article helpful?