Adding Active Directory Controllers and Users
The following topics describe the process of adding an Active Directory domain controller into UDT and
using it to track the activity of AD-associated users on your network.
UDT tracks user activity by reading an event log on the AD domain controller. Reading that log requires
UDT to have the Event LogReader permission on each AD controller through which it is tracking user
activity.
Before you add an AD domain controller, and begin tracking the user accounts that are associated with it,
you must first create appropriate credentials for UDT to use in interacting with it.
n
Managing Active Directory Credentials
n
Managing Active Directory Domain Controllers
n
Setting Up Polling of User Data Across Domains
n
Defining Credentials for Polling Across Domains
n
Setting WMI Namespace Security
n
Adding a New AD Credential
Managing Active Directory Credentials
AD credentials are used in conjunction with the AD domain controllers you add into UDT.
The following sections explain how to add, edit, and delete AD credentials. We will also discuss the
possible scenarios UDT will report when validating AD credentials.
Notes:
n
The domain credential used by UDT for communications with the Domain Controller should
have the following permission:
n Event Log Readers
n
The domain credentials should also have access to the WMI namespaces listed below:
n CIMV2
n directory
n RSOP
Adding a New AD Credential
Follow these steps to add a new AD credential into UDT.
1. Click Manage Active Directory Administrator Credentials in the UDT Credentials area in UDT Settings
(Settings > UDT Settings).
2. Click Add UDT Credential.
46
To Next Page
Loading...