09-04-2019 10:20 AM - edited 02-21-2020 09:27 AM
Hi,
I checked the documentation but I cannot see what I am looking for.
This is about the integration of the FTD to the AD using the Realm, I would like to know what should be the AD service account privileges for the integration to work?
Thanks
09-04-2019 10:55 AM
The account must be any Active Directory user with appropriate rights to create a Domain Computer account in the Active Directory domain.
09-04-2019 12:01 PM
Hi @Marvin Rhoads , thanks for the feedback.
Do you have any documents for that one? That's the only privilege that I need to set in my service account? Does it include also lookup for the OU and Users?
Thanks
09-04-2019 12:23 PM - edited 09-04-2019 12:25 PM
Here's the reference:
As far as I know and have seen it does include those features you mentioned.
I note that those joining privileges are only if you need to use Kerberos for captive portals. Further down in the reference it mentions:
"The distinguished username and password for a user with appropriate access to the user information you want to retrieve.
Note the following:
For Microsoft Active Directory, the user does not need elevated privileges. You can specify any user in the domain."
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: