Details page — Directory Services Connector (Registered Server Builder)

Use this page to set up your connection to the Control Console and set up auto-discovery for Active Directory sync.

Control Console options
Option Definition
Control Console Hostname Specifies one of two possible host names the Directory Services Connector uses to connect to the Control Console.

The host name you enter depends on the URL you use to log on to the Control Console and whether that URL contains the word portal or console.

If your URL looks like this... Enter this valid host name...
portal.example.com portal.saascontrol.com
console.example.com console.saascontrol.com
  • Do not enter any other value for the host name.
  • Do not mismatch "portal" and "console" values.
  • Do not include the protocol, for example: https://.
Note If you are not sure which value you should use, contact your admin or support representative.
User Name Specifies the user name you use to access the Control Console.
Note You must be a Customer Admin or higher.
Password Specifies the password for the user account you use to access the Control Console.
ePO Server Nickname Specifies an easy-to-remember name for this instance of the Directory Services Connector. By default, the ePO Server Nickname is the same as your ePO server name.
DSC Server UID This Unit Identifier uniquely identifies this specific DSC Registered Server. The UID can also be viewed in the Control Console to confirm the current DSC Registered Server associated with Directory Integration configuration for the customer. This Unit Identifier is automatically generated by the Control Console after a synchronization.
AD Synchronization Settings options
Option Definition
Active Directory Server Name Specifies either the DNS-style domain name (for example, www.example.com) of the domain, or the server name or IP address of the specific server.
Select an option:
  • Active Directory Domain Name — Specifies a DNS-style domain name to dynamically select a server within the domain.
  • Active Directory Server Name — Specifies the specific server name or IP address for the server you want to use.
  Select an option:
  • Use SSL — Specifies whether this server uses Secure Socket Layer (SSL) protocol to communicate.
User Name Specifies the user name you use to log on to the server. If you are using an Active Directory account, use the format: domain\username.
Password Specifies and then confirms the password for the account.
Site Name Specifies the name of the Active Directory site with which you want to connect. Either enter a name for the server, or select it by clicking Browse and navigating to it.
Test Connection Verifies the connection to the Control Console. The Test Connection button is enabled when you complete all of the required fields.
Identity Bridge Settings options
Option Definition
Identity Bridge Authentication Select the checkbox to enable Identity Bridge and to enable the remaining configuration fields.
Company IP Address Range Enter a single range of IP addresses, using CIDR notation, for example, 12.39.58.0/24. The range of IP addresses should include all users that can access Cloud SSO from a corporate sign in.
The CIDR value must meet the following requirements:
  • The IP address is valid.
  • The netmask is between 24 and 32, inclusive.
  • The IP address and netmask are compatible with CIDR notation.
ePO Hostname Directory Services Connector automatically enters the ePO server name and port number on which you are running Directory Services Connector and Identity Bridge, for example denver1.acme.com:8443. You must verify that the host name and port number are correct. If not, you must change them. In some cases, perhaps for traffic load balancing, you might wish to use the host name of a different ePO server, if any, in your corporate network.
Note Do not change the host name and default port number in the ePO Hostname field unless you are sure the host name and port number you want to substitute will work.
Active Directory Server Principal Name Enter the security principal name to be used to connect with Active Directory for authentication of users accessing the Control Console. The format of the name should be HTTP/<server_name_for_ID_Bridge>@<AD_DOMAIN_NAME>, where HTTP and <AD_DOMAIN_NAME> are in all uppercase. For example, if you entered denver1.acme.com in Step 7 and the AD domain of your users is ADcorp1.int, you would enter HTTP/denver1.acme.com@ADCORP1.INT.
Server Principal Password Enter the password for the security principal to be used when connecting to the Active Directory domain.