Phone Lines icon GFI Support Home

Articles in this section

Connecting Kerio Control to Directory Services

Author: Vladyslav Velychko Updated

Overview

This article explains different ways of connecting Kerio Control to Directory Services. The Microsoft Active Directory and Apple Open Directory are supported by Kerio Control.

Microsoft Active Directory, so-called AD, is a directory service for Windows domain networks. Apple Open Directory (OD) is used for Apple-based networks and Mac devices.

To configure Kerio Control directory-service mapping to AD, certain conditions must be met.

For more information on the connection usages, please see Connection Advantages of Directory Services.

Solution

Connecting to Microsoft Active Directory

  1. In the administration interface, go to Domains and User Login > Directory Services.
  2. You have to be a member of the Active Directory domain. If the firewall is not a member of the domain, click Join Domain.
    ad_1.png
  3. In the Join Domain dialog, type the domain name and credentials with rights to join the computer to the Active Directory domain. If you are successfully connected to the domain, you can see a green icon with the name of your domain on the Directory Services tab.
  4. Check Map user accounts and groups from a directory service and select Microsoft Active Directory.
  5. Type Domain name.
  6. Type the username and password of a user with at least read rights for the Microsoft Active Directory database.
    AD_Integration.png

    Note: depending on your AD settings, the username format might be user@domain.

  7. Click Test Connection.

 

Connecting to Apple Open Directory

  1. In the administration interface, go to Domains and User Login > Directory Services.
  2. Check Map user accounts and groups from a directory service and select Apple Open Directory.
  3. Type the domain name.
  4. Type the username and password of a user with at least read rights for the Apple Open Directory database. Username format is user@domain.
  5. In Primary server/Secondary server, type IP addresses or DNS names of the primary and secondary domain servers.
    OD_integration.png
  6. Click Test Connection.

Testing

In the Users section, you can select the new domain and display all users from the Active or Open Directory domain.

Mapped_Users.png

 

mapped_users_OD.png

A similar interface will be available for the Groups section.

Mapped_Groups.png

Related Article

In order to connect to other domains, please refer to Connecting to Other Domains.

 

Related articles