Microsoft Active Directory
  • 1 Minute to read
  • PDF

Microsoft Active Directory

  • PDF

Introduction


SAFE integration with Microsoft Active Directory (AD) simplifies the user management and allows SAFE to pull users from your Active Directory (AD).

Note

The integration will only work if SSO is not enabled.

Prerequisites


To configure tenable.io user needs the below details:

  1. Connection Name:  Takes any value that the user wants to enter for this connection.
  2. Hostname or IP:  Hostname or IP of the server on which AD is running.
  3. Domain Name: Domain name of the AD.
  4. Credentials: Admin credentials of AD.
  5. Port: Currently, SAFE only supports port 389 and can connect with the AD using this port.

Configure Active Directory (AD)


SAFE Admins can configure the Active Directory using LDAP as follows:

  1. Navigate to Administration> SAFE Hooks > Management Tools
  2. Click the Configure button available on the Active Directory card.
  3. Enter the field details for AD Name, LDAP Port, Hostname, Domain Controller, Admin Username, and Password.
  4. Click the Test Connection button.
  5. Once the connection is verified, click Save.
  6.  Enable the AD Toggle switch.

    AD(1)

Onboard Active Directory Users to SAFE


  1. Navigate to Administration > User Management.
  2. Click the Import Users button available at the bottom-left of the screen.
  3. To search for a specific user, enter a search string. E.g., enter “Joh*” to search for an AD user whose name starts with “Joh.”

  4. Select users you want to onboard on SAFE, enter their email id (in case it’s blank).
  5. Select the User Role from the drop-down to assign a Role to users.
  6. Click Import. The user will be redirected to User Management of SAFE.
    AD3
  7. On the User Management screen, you can edit the details or delete the users.
  8. To add more AD users, click on the Import AD User button.
Note
You can only import 1000 users at one time to SAFE.
AD4

Log in to SAFE using Active Directory credentials


Users can log in to SAFE using AD credentials. On the first-time login with AD credentials, users will be redirected to the onboard AD user page.

On Onboard AD User page:

  1. Enter the Phone Number and select an Avatar.
  2. Click Submit. Now, the user is all set to use SAFE.
Note

Users cannot change their Email and User Role. Contact your SAFE Admin to change the User Role.


Was this article helpful?

What's Next