HELP FILE

Configure the Active Directory Connector v2

The Active Directory Connector (ADC) receives Active Directory user updates and automatically makes the same changes in your LogMeIn account.

Configuring the ADC consists of authenticating a Windows user account and adding Active Directory groups, set a polling interval, and editing attribute mapping, if desired.

Set connections to ADC

To complete the steps below, you will need an admin account for Windows and a LogMeIn product admin account that is also an Organization Admin.
  1. Locate the Active Directory Connector Admin application (default location is C:\Program Files\Logmein\Active Directory Connector) and double-click ActiveDirectoryConnectorAdmin.exe to start the ADC. If prompted by User Account Control, click Yes to confirm, and the Active Directory Connector software will launch.
  2. Enter your Windows credentials in DOMAIN\username format (e.g., LOGMEIN\admin) and click OK. If you want to use a different Windows domain account for the Active Directory Connector service, click Change user, then fill in your desired DOMAIN\username credentials and click OK to confirm.
  3. Under LogMeIn permissions, log in with your LogMeIn admin account, which is required to also have an Organization Admin role. When prompted, click Allow to grant access to your LogMeIn account for the Active Directory Connector. Why am I getting an "Insufficient Permissions" error message?
  4. Once logged in, the user for each account is displayed. Click Save at the bottom of the window. If desired, you can click Revert Changes to delete any modifications made since the last time you clicked Save.
Next, you will need to add your Active Directory groups using the steps below.

Add or remove Active Directory groups

You can add as many Active Directory groups as you need. Nested groups are added when you add the parent group. Once you add or remove Active Directory groups in the ADC, changes can be previewed before you decide to sync.

  1. Under Active Directory Groups, click Add. The Windows groups manager displays.
  2. Type in a group name in the Enter the object names... box and click Check Names. This verifies the group exists and is accessible. You can also use the Advanced option to locate groups by query.
  3. Click OK to add the group. Continue until you have added all required groups.
  4. If desired, you can click the Delete icon to remove a selected group.

    Note: When you remove a group that has already been synced, any users in that group will remain in User Sync, but will lose their product entitlements.

  5. After each update, click Save at the bottom of the window. If needed, click Revert Changes to delete any modifications made since the last time you saved.
  6. When all of your groups have been added or removed, click Preview to view finalized changes, which include:
    • Users added represents new users that will be synced to a group in the ADC for the first time.
    • Groups added represents new groups that will be synced in the ADC for the first time.
    • Groups removed represents the groups that will be removed entirely from the ADC.
    • Users added to group represents the users who will be added to at least one group in the ADC.
    • Users removed from group represents the users who will be removed from at least one group in the ADC.
    • Users removed from all groups represents the users who will not be associated with any groups in the ADC; these users will remain listed in User Sync but will lose their product entitlements.
  7. Once you have viewed the changes, choose from the following options:
    • To accept these changes and run the ADC service, click Save then click Yes. If you have saved the changes but click No when prompted to start the service, you will return to the ADC and your changes will remain saved, but you will need to click Start to manually start the ADC service.
    • To reject the proposed changes, click Cancel to return to the ADC with unsaved changes.
Next, set your desired polling interval.

Set polling interval

You can add as many Active Directory groups as you need. Nested groups are added when you add the parent group. Once you add or remove Active Directory groups in the ADC, changes can be previewed before you decide to sync.

  1. Under Options, enter the number of minutes you want the ADC to wait between polls.

    Note: The default polling interval is 15 minutes.

  2. After each update, click Save at the bottom of the window. If desired, click Revert Changes to delete any modifications made since the last time you saved.
  3. Click Check connections to verify your permissions after all of your changes have been saved.
Next, you can choose to edit attribute mapping and manage your custom attributes, if desired. Otherwise, you can proceed to run the ADC .

Edit attribute mapping (optional)

  1. Under Options on the ADC, click Edit Mapping.
  2. Modify the attributes with your desired value(s), then click OK.
  3. After each update, click Save at the bottom of the ADC window. Alternatively, click Revert Changes to delete any modifications made since the last time you clicked Save.

Next, you can proceed to run the ADC v2 .

Use the Jive attribute on the Active Directory Connector v2 (optional)

Configure the Jive attribute

For accounts that use Jive, admins can utilize the "Jive PBX extension" SCIM attribute field to allow the ADC v2 to associate custom 4-digit extension numbers from AD user accounts with their Jive user accounts based on the Active Directory attribute entered in the "Jive PBX extension" field.
  1. As an admin of Active Directory, enter a custom 4-digit extension number in one of the fields (listed in Column A in the table below) in the Telephones tab of your Active Directory user accounts (e.g., Home). 
  2. On the Active Directory Connector v2, click Edit mapping and enter the Active Directory attribute name (listed in Column B in the table below) in the "Jive PBX extension" field (e.g., HomePhone). Please note that AD attribute fields (Column B in the table below) are not case-sensitive.

  3. Run the Active Directory Connector v2 service (learn how here).
  4. The custom 4-digit extension (listed in Column C in the table listed below) for each of the AD user accounts is now associated with their Jive user account, and is displayed in the Jive Administration Center at https://my.jive.com/pbx.

Available attributes

Field Name Displayed in Active Directory (Column A) AD Attribute to Enter in "Jive PBX Extension" Field on ADC v2 (Column B) Input accepted (Column C)
Home homePhone 4-digit extension
Home (Other) otherHomePhone
Pager pager
Pager (Other) otherPager
Mobile mobile
Mobile (Other) otherMobile
Fax facsimileTelephoneNumber
Fax (Other) otherFacsimile
Telephone Number telephoneNumber
IP Phone ipPhone
IP Phone (Other) otherIpPhone
Notes info