Active Directory

La fonctionnalité Active Directory (AD) permet à EntraPass d’importer et de synchroniser les utilisateurs de l’AD avec les opérateurs et utilisateurs de EntraPass. EntraPass fait appel à un protocole d'accès de répertoire léger (LDAP - Lightweight Directory Access Protocol) afin de partager des renseignements sur le réseau entre le serveur EntraPass et le client AD. La fonction de synchronisation élimine le besoin de créer et maintenir manuellement des Utilisateurs AD dans EntraPass alors que la coordination AD permet de procéder à une authentification avec Connexion unique (SSO). Cela signifie que les opérateurs sont authentifiés par leur informations d’identification Windows et automatiquement connectés au poste de travail EntraPass ce, d'un simple clic. Les utilisateurs peuvent également être gérés via la connexion AD, simplifiant la gestion des utilisateurs. Il est possible d'effectuer jusqu'à dix connexion AD en même temps.

 

Remarque : Pour exécuter le service EntraPass LDAP, vous devez installer Microsoft .NET Framework. Installez .NET version 4.5.1 sur le même ordinateur que le SmartLink.

 

Vous devez définir un réseau et des réglages AD pour le serveur avec lequel vous voulez vous connecter.

  1. Sous l'onglet System (système), sélectionnez le bouton Active directory (active directory). La fenêtre de active directory apparaît lorsque l'onglet General (général) est activé.
  2. Cliquez sur le bouton New (nouveau) pour créer un nouveau active directory et saisissez les renseignements requis dans la section langue.
    Remarque : La case Enable active directory service (activer le service de active directory) est automatiquement cochée.
  3. Saisissez l'adresse IP ou le Nom de domaine du serveur qui stocke le active directory. L'application LDAP se sert du port dédié 389 tant pour la transmission TCP qu'UDP.
  4. Le champ Sync interval (hh:mm:ss) (intervalle de synchronisation) spécifie le temps écoulé entre la dernière et la prochaine synchronisation. Indiquez l'intervalle de temps en heures, en minutes et en secondes.
    Remarque : Après avoir d'abord installé l'application LDAP, EntraPass effectue une synchronisation complète. Pour un redémarrage, EntraPass effectue cependant une synchronisation partielle; SmartLink ne met à jour que les entrées ajoutées ou modifiées.
  5. Vous devez affecter un SmartLink au active directory parce que l'application LDAP se connecte au service Web SmartLink.
    Remarque : Il est possible d'effectuer plusieurs connexions SmartLink sur le même SmartLink. Le nombre maximum de répertoires actifs définis dans EntraPass est dix.
  6. Dans les Active directory settings (paramètres du active directory), complétez les champs suivants :
    • DN de base LDAP (Opérateur) : le nom utilisé comme point de départ pour les recherches de serveur de répertoire pour les opérateurs de EntraPass, par exemple EntraPass.
    • DN de base LDAP (Utilisateur) : le nom utilisé comme point de départ pour les recherches dans un serveur de répertoire pour les utilisateurs EntraPass, par exemple EntraPassUser.
    • LDAP Binding DN: il s'agit du nom d'utilisateur du compte d'utilisateur AD à partir duquel la connexion au active directory est effectuée.
    • Mot de passe LDAP: il s'agit du nom d'utilisateur du compte d'utilisateur AD à partir duquel la connexion au active directory est effectuée.
    • Confirmation de mot de passe LDAP: permet de confirmer le mot de passe.
    Remarque : En cas d'échec de connexion, une resynchronisation sera effectuée. Vous verrez le statut de service LDAP à plusieurs endroits, qui sont : Répertoire système/actif, Statut/Application/SmartLink, Barre de statut Windows/Contrôle de service LDAP et fenêtre d'application SmartLink.
  7. Sélectionnez le bouton IMPORTER AD/LDAP. Si la connexion est réussie, la boîte de champs importés est remplie par le nombre de champs disponibles à partir du serveur AD.
  8. Pour l’utilisateur, l’onglet Mappage de l’utilisateur définit quels attributs Active Directory sont mappés sur les champs de la base de données EntraPass. Ici, vous pouvez personnaliser les champs utilisés dans la synchronisation des utilisateurs. Le tableau 1 ci-dessous décrit quels champs de la base de données EntraPass peuvent être mappés.
  9. Utilisez le bouton Sync now (synchroniser maintenant) pour lancer manuellement la synchronisation avec le serveur de active directory sélectionné.
    Remarque : La touche est grisée si le active directory n'est pas connecté.
  10. Sous l'onglet Mapping (cartographie), il y a treize champs pouvant être synchronisés avec EntraPass. Les neuf premiers champs sont obligatoires et en lecture seule. Les quatre autres sont en option selon vos exigences. La majorité des champs en lecture seule sont liés au mot de passe du active directory et aux diverses conditions qui y sont associées. Cela s'explique par le fait que EntraPass ne conserve pas les mots de passe dans sa base de données. Le active directory contrôle complètement les mots de passe.

    Si vous sélectionnez la date d'expiration d'utilisation et la date d'expiration de l'opérateur, le active directory contrôle le moment où le compte arrive à échéance. Si vous désélectionnez ces champs, les paramètres EntraPass resteront en option. Sélectionnez le champ Picture (photo) si vous voulez stocker des images de l'opérateur. EntraPass peut importer des photos de type jpeg et onglet. Lorsque vous sélectionnez le champ E-mail (courriel), il est possible d'importer et de stocker une ou plusieurs adresses courriel pour un opérateur.

  11. Cliquez ici pour en savoir plus sur l'onglet Comment (commentaire).
Tableau 1. Champs de la base de données EntraPass pour le mappage de l'utilisateur. Le champ À DÉTERMINER peut être personnalisé par vous.
EntraPass fields Champs du Active Directory Syntaxe possible des champs AD
Nom d'utilisateur de carte Nom d’affichage (DisplayName) (obligatoire)
Card Type (integer) TBD

AD fields drop list returns attributes of types:

  • integer
  • numerical string
  • enumeration
Start Date (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
User End Date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
End Date (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 1 - Card Number (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card # 1 - Display Card Number (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 1 - User expiration date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 1 - Expiration Date + Hour (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 1 - Trace (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 1 - Stolen/lost (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 2 - Card Number (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card # 2 - Display Card Number (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 2 - User expiration date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 2 - Expiration Date + Hour (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 2 - Trace (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 2 - Stolen/lost (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 3 - Card Number (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card # 3 - Display Card Number (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 3- User expiration date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 3 - Expiration Date + Hour (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 3 - Trace (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 3 - Stolen/lost (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 4 - Card Number (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card # 4 - Display Card Number (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 4 - User expiration date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 4 - Expiration Date + Hour (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 4 - Trace (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 4 - Stolen/lost (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 5 - Card Number (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card # 5 - Display Card Number (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 5 - User expiration date (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 5 - Expiration Date + Hour (date) TBD

AD fields drop list returns attributes of types:

  • Generalized Time
  • UTC Coded Time
Card # 5 - Trace (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card # 5 - Stolen/lost (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Card Information 1 (up to 10 with EP Corporate) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 2 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 3 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 4 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 5 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 6 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 7 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 8 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 9 TBD

AD fields drop list returns attributes of types: -

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 10 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 11 (up to 40 with EP Global) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 12 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 13 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 14 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 15 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 16 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 17 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 18 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 19 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string - unicode string - numerical string - octet string - SID (type received from AD as octet string)
Card Information 20 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 21 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 22 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 23 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 24 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 25 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 26 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 27 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 28 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 29 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 30 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 31 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 32 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 33 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 34 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 35 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 36 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 37 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 38 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string SID (type received from AD as octet string)
Card Information 39 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Information 40 TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card Filter (Hattrix only) (integer) TBD

AD fields drop list returns attributes of types:

  • integer
  • numerical string
  • enumeration
Privileged Operation (Global Gateway only) (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  •  
  • boolean
Supervisor level (Global/Hattrix only) (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Delete when expired (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Wait for Keypad (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
PIN (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Card State (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
  • boolean
Disable Passback (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Extended Door Access TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Allow Multi-Swipe (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Picture (binary) TBD

AD fields drop list returns attributes of types:

  • replica link (type received from AD as octet string)
  • octet string
  • SID (type received from AD as octet string)
Badge Layout (integer) TBD

AD fields drop list returns attributes of types:

  • integer
  • numerical string
  • enumeration
Bar Code (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Value (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)
Enable usage restriction (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Maximum card usage (integer) TBD

AD fields drop list returns attributes of types:

  • integer
  • numerical string
  • enumeration
Manual Operation only (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Card access group (shortint) TBD

AD fields drop list returns attributes of types:

  • integer
  • enumeration
Comment (char) TBD

AD fields drop list returns attributes of types:

  • print case string
  • replica link (type received from AD as octet string)
  • case insensitive string
  • case sensitive string
  • unicode string
  • numerical string
  • octet string
  • SID (type received from AD as octet string)