How do I enable Live synchronisation with Active Directory

From IE Internet helpdesk
Jump to navigation Jump to search

How do I enable Live synchronisation with Active Directory

  • PRODUCT NOTE Hosted mailboxes may have undesirable and unpredictable effects on a domain with Active Directory synchronisation enabled. It is not recommended or supported to use these features together.

MailWall is capable of synchronising in real time with email addresses existing within an Active Directory installation.

This feature works as follows:

  • when a new email address is created within the Active Directory installation, it will appear within MailWall attached to the default user
  • when an email addresses is deleted within the Active Directory installation, it will also be deleted within MailWall
  • The synchronisation takes place on a hourly basis

Prior to enabling live synchronisation between Active Directory and MailWall, an initial base of Active Directory users will need to be imported via the Upload From Active Directory feature.

Before you continue, you will need the following:

  • Proficient level of understanding of Microsoft Windows Server (2003 or 2008)
  • Proficient level of understanding relating to TCP/IP and the operation of your border firewall / router
  • Administrator details for your Active Directory installation
  • A permanent connection to the Internet (leased line, xDSL, wireless etc.)
  • An ISP which does not filter or restrict inbound and outbound IP connections
  • A fixed external IP address for use with the Active Directory sync
  • Access to the local border firewall / router
  • A Domain Admin or Reseller Admin privileged MailWall user account
  • The IP address of the MailWall sync server for your domain (obtained from a MailWall professional)


On the MailWall dashboard:

1. Access the Sync with Active Directory section of Directory Services

DS.gif

Field |

Expected Values Description

Sync with Active Directory Yes / No Should MailWall attempt to sync with Active Directory Active Directory Server Address 32 bit IP address in dotted quad The WAN IP address you assigned to the Active Directory NAT rule on your firewall Active Directory Server Port Integer 1 - 65535 The port Active Directory is listening on. Typically 389 for unencrypted and 636 for encrypted connections Active Directory User Name Alphanumeric The username you have assigned to access the Active Directory Active Directory User Password Alphanumeric The password for the above user Active Directory Domain Domain name The domain name to use - typically this will be the domain name to be synced unless you have configured your Active Directory in a very strange way Remote Security Setup SSL / TLS / None Level of encryption. TLS is strongly recommended. This needs to match the encryption configured on the Active Directory server Send Administrator Activity Report Yes / No When a sync operation takes place, should an email detailing the operation be sent Email Address to send Activity Report to Email Address If the above option is enabled - what email address should the report be sent to

Retrieved from ‘http://helpdesk.ieinternet.com/help/index.php?title=How_do_I_enable_Live_synchronisation_with_Active_Directory&oldid=1703