![]() Starting with Authentication Proxy version 6.0.0, the certificate issued to the domain controller(s) must use SHA256 or greater. If you plan to secure communications between the Duo on-premises proxy and your directory server, have the LDAPS or STARTTLS information and the issuing CA certificate or CA certificate chain for the certificate used by your domain controller.Know your Active Directory domain controller hostname or IP address, the LDAP or LDAPS port for communicating with that server, the authentication type you plan to use, and the directory search base DN.Prerequisites necessary for Active Directory synchronization are as follows: ![]() ![]() The Directory Sync feature is part of the Duo Premier, Duo Advantage, and Duo Essentials plans. You can also run an individual user or administrator syncs on-demand from the Admin Panel or programmatically via Admin API. Run either type of full sync on-demand from the Duo Admin Panel. Scheduled user synchronization of your full directory runs twice a day, and runs every 30 minutes for administrators. No information from Duo is imported into your user directory. Import Duo end-users or administrators directly from your on-premises Active Directory (AD) forest or domain or Active Directory Lightweight Directory Service (AD LDS) instance into Duo with Duo Security's Directory Sync feature.ĭuo Directory Sync is a one-way operation. Learn how to synchronize Duo users and groups or Duo administrators from your existing Active Directory domain via the Authentication Proxy.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |