More than 90% organizations use Microsoft Active Directory as their primary source of truth for all of their authentication and authorization data...
At the same time, organizations using a multi-cloud strategy have already exceed 75% and the trend is growing predicted to reach up to 98%...
Hosting Controller’s AD Connect Sync is a synchronization tool between two or more Active Directories. The source is a Microsoft Active Directory and the destination is usually a Microsoft Active Directory as well but can be any LDAP compliant Active Directory.
A common requirement for companies with an established on-premises Active Directory environment, is to have the existing on-premises users and groups linked in some way to a hosted or Cloud Active Directory. Likewise it's essential for large organizations providing Hosted Exchange and housing Active Directory infrastructures, to keep their internal and external Active Directories linked. HC Active Directory Synchronization tool is the smartest answer to all your sync needs.
DownloadEnable an organization to setup automatic synchronization between on-premises AD and one or more public IAM systems including:
Synchronize identities, group membership and passwords to various IAM targets with ease.
Used to synchronize Active Directory data where normal Active Directory replication cannot be used for any reason.
No need to manage users in two places when it can be done in one.
Keep your Active Directory passwords synchronized across your internal and external Active Directories. Make it easier for administrators to replicate and track password changes across Active Directories.
Perform one-way synchronization of identity data (users, groups) between an on-premises Active Directory and your hosted Active Directory. Manage account changes across multiple systems.
Reflect group changes made in an on-premises Active Directory to the hosted environment in real-time. Provide a complete and efficient identity management solution to your business.
The bulk of security still revolves around having users, identified by their passwords, having access to resources through a role based security or group policy. Organizations have spent years maturing their Active Directory infrastructures and process.
As an organization onboards yet another public cloud, it comes with its own set of IAM (Identity and Access Management) paradigm. While configuring security and group policies is an allied and most important task of onboarding another cloud platform, the regular assignment and revocation of those policies to users quickly becomes an operations nightmare if not automated.
Hosting Controller is a unified cloud management tool (also called control panel) and includes support for multi-cloud deployment in different ways.
But all those features share a way to synchronize changes between local master Active Directory environments and public cloud IAMs. It synchronizes:
As a user is created in the master Active Directory, its replicated across multiple public cloud IAMs.
Passwords are changed in the master Active Directory only through whatever security means are already in place for the organization. As soon as the password is changed in the master AD, it is automatically synchronized into multiple targets.
As a user is assigned or revoked a group membership, it is synchronized in the IAM.
As your organization evolves and finds its optimum mix of on-prem and cloud based services, AD Connect Sync tool is there to support any and all Identity management topologies.
One Source - One Destination
Typical Use Case: On-Prem to Cloud
One Source - Multiple Destinations
Typical Use Cases: Distributed Applications
Multiple Sources - One Destination
Typical Use Case: Cloud Service Provider
No trust relationship is needed between the source and the destination
Admins can choose just what they want to copy down to a single user, group or contact
Passwords are also copied in real-time and synchronized automatically
Destination can be any LDAP compliant Active Directory
Copying rules enable rule based changes to data as it is being copied
The business scenarios and rationale for using AD Connect Sync.
As cloud adoption increases, organizations are finding requirements to copy their...
Read MoreNo two mergers ever go the same way. If you are faced with a task to arrange for the merger...
Read MoreIf your organization has moved many applications to Amazon AWS and you realize a need to...
Read MoreSingle Sign-on Application require public access to the AD. While most Active Directories...
Read MoreFor an organization running an on-premises Active Directory server, all users need to login...
Read MoreWhen applications are running distributed into many clouds, a local repository hosted close...
Read MoreAs cloud adoption grows, so does a need to arrange migrations. It may seem ideal...
Read MoreThis use-case was typically for the service providers where they would host a service requiring Active Directory authentication....
Read MoreIt is important that you maintain a healthy synchronization between your local and Cloud Active Directories. Quickly spotting and diagnosing anomalies is the key to success. AD Connect Sync is accompanied by a robust monitoring tool, which not only identifies any bottle necks in the whole process but also makes available visual representations in the form of daily and weekly stats and reports.
There are plenty of good reasons to use HC ADSync for synchronizing your on-premises identities with those in the Cloud. The most important ones are:
HC ADSync is far easier to implement than other more complex options. Installing and configuring HC ADSync simply involves a few one-time configuration steps. HC ADSync is a simple service which requires an installation over the primary (or additional) domain controllers. Once installed, AD objects can be selected to initiate the sync process between the ADs.
HC ADSync does not require a two-way trust relationship to be established between domains neither does it demand the added complication of deploying an ADFS infrastructure. No additional servers, SSL certificates or DNS entries are required.
Costs can be cut into half or even more by deploying HC ADSync. There are no additional costs to consider above those of the licenses whereas other more expensive alternates like ADFS require additional server licensing, SSL certificates, hardware costs and/or virtual infrastructure resources and consultancy costs.
Core features and functionality of AD Connect Sync.
Push newly provisioned users to the hosted/Cloud environment.
Intercept changes to user passwords on the on-premises AD in real time and replicate to related user object on the hosted AD.
Sync any changes to user attributes such as displayName, company, mobile etc.
Push newly created Distribution and Security groups to the hosted/Cloud environment.
Sync group attributes to the hosted environment.
Reflect any membership changes to the Cloud environment.
Replicate new contacts seamlessly between on-premises and Cloud.
Choose convenient time intervals for synchronization.
Send requests securely over LDAPs.
Enable or prevent selected few attributes of a user to be synchronized.
Choose required few users, groups and contacts from a specific organization (OU) to be synced.
Synchronize a single local AD with multiple Cloud Domain Controllers.
AD Connect Sync Interfaces at a Glance