UniFi Identity Enterprise - Integrate AD with UniFi Identity Enterprise

2023-11-24 02:15:19 UTC

Admins can enable and configure Directory Integration to import users from Active Directory (AD) to UniFi Identity Enterprise and allow users to sign in to UniFi Identity Enterprise using their AD credentials.

Requirements

Before you can integrate your AD with UniFi Identity Enterprise, make sure:

  1. You have subscribed to the Identity Enterprise Standard Plan or have applied for a plan add-on.
    • Use your owner account to sign in to Identity Enterprise Manager (https://[your workspace domain].ui.com/cloud) and go to Settings > Plan & Billing to subscribe to the Identity Enterprise Standard Plan.
    • Use your owner account to sign in to Identity Enterprise Manager (https://[your workspace domain].ui.com/cloud) and go to Settings > Plan & Billing > Feature Usage > Apply for Plan Add-On to apply for a free trial of this feature.
  2. You have updated your Identity Enterprise Agent to v1.54.1 or later.
  3. You have updated the Security Token after you have subscribed to the Identity Enterprise Standard Plan or after your plan add-on application is approved.
  4. You have an AD server. Refer to Microsoft's documentation for details.

Integrate AD with UniFi Identity Enterprise

  1. Sign in to your Identity Enterprise Manager (https://[your workspace domain].ui.com/cloud).
  2. Go to Organization > Directory Integration and click Add Directory or New Directory based on whether this is the first time a directory has been added to UniFi Identity Enterprise.
  3. Fill in the required AD information and click Add.

Configure Azure AD Domain Service in UniFi Identity Enterprise

Before you start, refer to Microsoft's article for instructions to configure Azure’s Active Directory Domain Services.

  1. Sign in to Microsoft Azure and select "Azure AD Domain Services" under Azure services.
  2. Select the domain to enter the details pages.
  3. Click Properties on the Settings page and you will see "Secure LDAP external IP address".
  4. Enter the following information:
    • Username: Azure admin account
    • Password: Azure admin password
    • Base DN: dc=example,dc=com (Corresponding to the domain service, such as example.com)
Was this article helpful?
0 out of 0 found this helpful