In case your organization runs an Active Directory infrastructure, SteelConnect Manager can sync users from the Domain Controller to allow easy integration. The Active Directory Sync (AD Sync) feature will poll the Active Directory Domain Controller every 15 minutes. Only User accounts that contain an email address will be synchronised. The AD Sync will also synchronize the User’s mobile number attribute from Active Directory so that User accounts with this attribute can use both email address and mobile number as User Portal registration methods.
There are two possible methods for the LDAP communication between AD Sync and the Domain Controller:
Via a riverbed appliance at the site contain a Domain Controller
Via a direct Secure LDAP connection
When connecting via a riverbed appliance the AD Sync is done using a reverse SSH tunnel between the SteelConnect Manager and the specified riverbed appliance at the target Site. Alternatively, when using a Secure LDAP connection the SteelConnect Manager will attempt to make a connection via the hostname provided for the LDAP service (i.e. ldaps://FQDN).
In most cases a static DNS route to an Active Direcotry DNS server is necessary to resolve the internal SRV record _ldap._tcp.domain.local (where domain.local represents your Active Directory domain name).