Active Directory

Use the Active Directory (AD) feature to import and synchronize users from AD with operators and users in EntraPass. EntraPass uses Lightweight Directory Access Protocol (LDAP) to share information across the network between the EntraPass server and the client's AD. The sync feature eliminates the manual creation and maintenance of AD users in EntraPass and the AD integration permits Single Sign On (SSO) authentication. Operators are authenticated by their Windows credentials and are automatically logged on to EntraPass workstation using a single click. Users can also be managed through the AD connection simplifying the management of users. Up to ten AD connections are possible at the same time.

Note: To run the EntraPass LDAP service you need to install the Microsoft .NET Framework. Install .NET version 4.6.1 on the same machine where SmartLink is installed.

You must enter network and AD settings for the server you want to connect with.

On the System tab, click Active directory. The Active Directory window displays with the General tab enabled.
Click the New icon to create a new Active Directory, and enter the necessary information in the language section.

Note: The Enable active directory service check box is automatically selected.
Enter the IP address or the Domain name for the server that stores the Active Directory. The LDAP application uses the dedicated Port 389 for both TCP and UDP transmission.
The Sync interval (hh:mm:ss) field specifies the time interval between the last sync and the next sync. Enter the interval time in hours, minutes, and seconds.

Note: After first installing the LDAP application, EntraPass completes a full sync. After a restart, EntraPass completes a partial sync where SmartLink only updates new or modified entries.
Assign a SmartLink to the Active Directory because the LDAP application connects to the SmartLink Web service.

Note: Several SmartLink connections are possible on the same SmartLink. The maximum number of Active Directories defined in EntraPass is ten.
In the Active directory settings area, complete the following fields:
- LDAP Base DN (Operator): the name used for the starting point for directory server searches for EntraPass operators, for example EntraPass.
- LDAP Base DN (User): the name used for the starting point for directory server searches for EntraPass users, for example EntraPassUser.
- LDAP Binding DN: the user name of the AD user account that you want to connect to the Active Directory.
- LDAP Password: the Active Directory password for the AD user account.
- LDAP Password confirmation: confirm the password.
  Note: If the connection is successful, synchronization occurs. You can view the LDAP service status in the following locations: System > Active directory, Status > Application > SmartLink, Windows system tray > LDAP Service Control, and the SmartLink application window.
Click IMPORT AD/LDAP. If the connection is successful the Imported fields box is populated with the number of fields available from the AD server.

Note: The Import AD\LDAP option is grayed out if the LDAP Base DN (User) is blank, or if the AD server IP or domain name is blank.
For users, the User Mapping tab defines which Active Directory attributes are mapped to which EntraPass database field. Users can customize the fields used in the users synchronization. To view which EntraPass database fields you can map, see the following table.
Click Sync now to manually start synchronization with the selected Active Directory server.

Note: The button is grayed if the Active Directory is not connected.
For operators, the Operator Mapping tab displays thirteen fields that EntraPass can synchronize with. The first nine are mandatory and read-only but the remaining four are optional depending on your requirements. The majority of read-only fields relate to the Active Directory password and the various conditions associated with it. This is because EntraPass does not store passwords in its database. Active Directory fully controls passwords.

If you select Use expiry date and Operator expiry date, Active Directory controls when the account expires. If you clear these fields, the EntraPass settings remain operational. Select Picture if you want to store images of the operator; EntraPass can import both jpeg and thumbnail photo types. When you select E-mail, you can import and store email addresses for an operator.

For information about the comment tab, see Comment tab.

Table 1. EntraPass database fields for user mapping. You can customize the TBD field.
EntraPass fields	Active Directory fields	Possible AD fields Syntax
Card User Name	Display Name (DisplayName)	(mandatory)
Card Type (integer)	TBD	AD fields drop list returns attributes of types: integer numerical string enumeration
Start Date (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
User End Date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
End Date (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 1 - Card Number (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card # 1 - Display Card Number (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 1 - User expiration date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 1 - Expiration Date and Hour (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 1 - Trace (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 1 - Stolen/lost (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 2 - Card Number (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card # 2 - Display Card Number (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 2 - User expiration date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 2 - Expiration Date and Hour (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 2 - Trace (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 2 - Stolen/lost (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 3 - Card Number (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card # 3 - Display Card Number (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 3- User expiration date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 3 - Expiration Date and Hour (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 3 - Trace (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 3 - Stolen/lost (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 4 - Card Number (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card # 4 - Display Card Number (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 4 - User expiration date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 4 - Expiration Date and Hour(date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 4 - Trace (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 4 - Stolen/lost (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 5 - Card Number (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card # 5 - Display Card Number (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 5 - User expiration date (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 5 - Expiration Date and Hour (date)	TBD	AD fields drop list returns attributes of types: Generalized Time UTC Coded Time
Card # 5 - Trace (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card # 5 - Stolen/lost (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Card Information 1 (up to 10 with EP Corporate)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 2	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 3	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 4	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 5	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 6	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 7	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 8	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 9	TBD	AD fields drop list returns attributes of types: - print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 10	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 11 (up to 40 with EP Global)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 12	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 13	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 14	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 15	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 16	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 17	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 18	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 19	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string - unicode string - numerical string - octet string - SID (type received from AD as octet string)
Card Information 20	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 21	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 22	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 23	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 24	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 25	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 26	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 27	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 28	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 29	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 30	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 31	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 32	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 33	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 34	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 35	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 36	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 37	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 38	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 39	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Information 40	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card Filter (Hattrix only) (integer)	TBD	AD fields drop list returns attributes of types: integer numerical string enumeration
Privileged Operation (Global Gateway only) (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Supervisor level (Global/Hattrix only) (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Delete when expired (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Wait for Keypad (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
PIN (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Card State (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration boolean
Disable Passback (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Extended Door Access	TBD	AD fields drop list returns attributes of types: integer enumeration
Allow Multi-Swipe (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Picture (binary)	TBD	AD fields drop list returns attributes of types: replica link (type received from AD as octet string) octet string SID (type received from AD as octet string)
Badge Layout (integer)	TBD	AD fields drop list returns attributes of types: integer numerical string enumeration
Bar Code (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Value (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)
Enable usage restriction (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Maximum card usage (integer)	TBD	AD fields drop list returns attributes of types: integer numerical string enumeration
Manual Operation only (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Card access group (shortint)	TBD	AD fields drop list returns attributes of types: integer enumeration
Comment (char)	TBD	AD fields drop list returns attributes of types: print case string replica link (type received from AD as octet string) case insensitive string case sensitive string unicode string numerical string octet string SID (type received from AD as octet string)