10.1 Auto-provision

Provisioning Manager provides the ability to integrate with Active Directory and provision accounts based on Active Directory groups. Configuring auto-provisioning with Active Directory requires four steps:

1. Configure LDAP agreements – the LDAP agreement is used to access Active Directory. Multiple LDAP agreements may be used with auto provisioning.
2. Enable Active Directory Auto-provision – enable the Auto-provisioning service in the Service Group(s) and set the default LDAP agreement.
3. Configure Auto Provisioning tasks – Auto Provisioning tasks are used to map Active Directory attributes to Provisioning Manager data. Multiple Auto Provisioning tasks may be configured to provide flexibility.
4. Schedule Auto Provisioning tasks – Auto Provisioning tasks must be scheduled to process provisioning tasks.

Step 1 – Configure LDAP Agreements:

Configure an LDAP agreement(s) that will provide Provisioning Manager access to the new users accounts to be auto-provisioned. Reference the LDAP topic in the Initial Configuration section.

Step 2 – Enable Active Directory Auto-provision

1. Select Service Groups from the System menu
2. In the list, click Service Group Name to edit the item
3. Navigate to the Active Directory Auto-provision section
4. Check the Enable AD Auto-provision box
5. Choose the Default LDAP server
6. Configure Default Username Bind Attribute
7. When finished, click Save

Step 3 – Configure Auto-provisioning Job:

1. Log into Provisioning Manager with an Administrator account
2. Select Automation from the System menu
3. Click on *Add *to configure a new Auto-provision Job
4. If required, choose a Service Group
5. Provide a name for the Job
6. Check enable (This will enable the task to run once scheduled)
7. Choose the LDAP agreement for this Job
8. Set the Username Bind Attribute (This is the attribute used to locate the user to be provisioned)
9. Select a Job for Auto-provisioning by dragging it into the Attribute Mapping section
10. Map the Job fields to an AD Attribute. Check to enter custom local values

11. Optionally, configure AD filters to narrow down the search

Step 4 – Scheduling the Auto-provision Jobs:

1. Select Schedule from the Actions menu
2. On the menu, click Add to schedule a job
3. Select the Auto-provision type
4. Select the Auto-provision task
5. Choose the frequency to run the task
6. Choose the starting date of the task
7. Set the task run time
8. Set the notification email
9. Set the Process all accounts within the last value. (The task will only process accounts with a create date included in this period)
10. Click Add to schedule the task

The schedule for any Job can be edited by clicking on the Source Name or the job can be deleted by checking the box next to the scheduled job you wish to delete and clicking the Delete button.

Copyright and Trademarks:

I. Copyright:

This website and its content is copyright © 2018 Akkadian, LLC. All rights reserved. Except with the prior written permission of Akkadian, LLC, any redistribution or reproduction of part or all of the contents of this website, including the redistribution or reproduction of any documentation or other materials downloaded from this website, in any form and in any media, is prohibited.

II. Trademarks:
Akkadian, the Akkadian logo and other trademark or service marks used on this website, whether registered or not, are the property of Akkadian, LLC and may not be used or reproduced without the prior written permission of Akkadian, LLC.

aPME UG 1/8/2018 0001 © http://www.akkadianlabs.com/apme/