Step 1: Register your AD/LDAP
You can register either of the following:
- Register the global catalog server of your AD/LDAP.
Registering a global catalog server is advantageous for organizations that have geographically distributed offices. This allows you to import users from different domains to the same profile.
- The domain controller of your AD/LDAP.
Registering a domain controller is advantageous for smaller organizations that have only one office.
To register your AD/LDAP with inSync Master
- On the inSync Management Console menu bar, click Users > Deployment.
- Click the Accounts tab. A list of all the registered AD/LDAP Accounts is displayed.
- Click Register AD/LDAP Account. The Register AD/LDAP Account window appears.
- Provide the appropriate information for each field and click Ok.
The AD/LDAP is registered with inSync Master.
Field |
Description |
Directory Service Type |
Select the directory service type that you want to register with inSync Cloud. Available directory service types are as follows:
- Microsoft AD
- LDAP (others), are other services using LDAP protocol, including OpenLDAP - an open-source implementation.
|
AD/LDAP Connector |
Select the AD/LDAP Connector that inSync must use to connect your AD/LDAP with inSync Cloud. |
Host |
Type the Hostname of the server where the Global Catalog or the Domain Controller is available. |
Port |
Type the port number required to access your AD/LDAP.
If you are registering the AD/LDAP by using its Domain Controller details, you must use 636 as the port number for a secure connection or 389 as the port number for a non-secure connection.
If you are registering the AD/LDAP by using Global Catalog server details, you must use 3269 as the port number for a secure connection or 3268 as the port number for a non-secure connection.
|
Use secure connection |
If you want to access your AD/LDAP through an HTTPS connection, select this check box. |
If you are registering LDAP as the Directory Service, you must enter the following Attribute Mapping details. |
Email |
Type the LDAP attribute for email, that should map to the inSync email address. |
inSync Username |
Type the LDAP attribute that should map to the inSync username. |
logon Name |
This is the distinguished name of the user. This is used as a username for LDAP based authentication. |
Step 2: Establish a connection between the registered AD/LDAP Server and the {{iconnector}}
You must establish a connection between a registered AD/LDAP Server and the AD/LDAP Connector for importing user details from that AD/LDAP. inSync Master requires read-only access to your AD/LDAP so that it can fetch the user details that it requires from your AD/LDAP. inSync does not fetch user credentials. inSync fetches only user details, such as email, name, department, country code, logon name.
When you establish a connection, you provide the AD/LDAP Server credentials that have read-only permissions on the AD/LDAP Connector. These credentials are saved in an encrypted format in the inSyncADConnector.cfg file for that inSync Connector.
To authenticate AD/LDAP Server credentials
- Double-click on the Druva AD/LDAP Connector icon. The AD/LDAP Connector window appears.
- Click Manage AD/LDAP Accounts. The Manage AD/LDAP Credentials window appears.

- Provide the appropriate information for each field, click Save, and then Click OK.
Field |
Description |
Host |
In the list, click the Hostname of the AD/LDAP server that you have configured with the AD/LDAP Connector.
The port number and secure connection associated with AD/LDAP server that you selected are automatically populated.
|
Port |
Indicates the port number associated with the AD/LDAP server that you selected. |
Secure Connection |
Indicates whether a secure connection is associated with the AD/LDAP server that you selected. |
Username |
Type the user name of the AD/LDAP Server account that has read-only permissions.
inSync Master requires read-only access to your AD/LDAP so that it can fetch the user details that it requires from your AD/LDAP. inSync does not fetch user credentials. inSync fetches only user details, such as email, name, department, country code, logon name.
|
Password |
Type the password for the AD/LDAP Server account. The password is saved in an encrypted format in the inSyncADConnector.cfg file for that inSync Connector.
|
Note: If you do not want to save the AD/LDAP Server (read-only) credentials on the {{iconnector}}, you can disable this functionality. To do so, submit your request to Support.