Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
193
Views
0
Helpful
0
Comments

GA Release of support for IPv6 for AD Connectors in Umbrella

gaushar7
Cisco Employee
Cisco Employee

on ‎06-18-2025 10:30 PM - edited on ‎06-18-2025 10:30 PM by Cisco Employee

Feature Overview

This feature update introduces IPv6 support for key operations involving AD Connector (ADC) and Domain Controller (DC). Previously limited to IPv4, this enhancement enables registration and communication over both IPv4 and IPv6 networks, providing greater flexibility for hybrid and IPv6-enabled environments. Key updates include support for IPv6 in ADC and DC registration, communication protocols, logon event handling, and synchronization of AD users and groups. This ensures seamless integration with both IPv4 and IPv6 infrastructure.

Note:

  •         The API Gateway service is currently limited to IPv4 networks. As a result, on pure IPv6 networks, the registration and synchronization processes for both AD Connector and Domain Controller will fail. Full support for pure IPv6 networks is not yet available.
  •         To leverage IPv6-related capabilities in ADC version 1.15.0, enable the Enhanced Authentication registration and synchronization mechanism as outlined in the documentation - https://docs.umbrella.com/umbrella-user-guide/docs/configure-authentication-ad-connectors-and-vas\)
  •         An IPv6-only AD Connector (ADC) cannot communicate with an IPv4-only Virtual Appliance (VA) to send user-to-IP mappings. Therefore, deploying dual-stack VAs is required to ensure seamless communication between IPv4 and IPv6 environments.

Key Benefits

Currently, the AD Connector and Domain Controller can only be registered using IPv4 addresses. Additionally, communication between the AD Connector, Domain Controller, and VA is limited to IPv4 networks.

With this update, IPv6 support will be introduced across the following stages of operation:

  1. AD Connector Registration:
    • AD Connector can now be registered on the Umbrella dashboard using either IPv4 or IPv6 addresses.
  2. Domain Controller Registration:
    • Domain Controllers can now be registered on the Umbrella dashboard using either IPv4 or IPv6 addresses.
  3. Enhanced Communication Protocols:
    • Communication with Domain Controllers will now be supported over both IPv4 and IPv6 networks.
  4. Logon Event Handling:
    • AD Connector will read logon events from Domain Controllers (using IPv4 or IPv6 addresses) and send them to the Virtual Appliance over IPv4 networks.
  5. User and Group Synchronization:
    • AD Connector will fetch Active Directory (AD) users and groups from Domain Controllers using either IPv4 or IPv6 networks and send the data to the Umbrella dashboard over IPv4 or IPv6 networks.

This feature enhancement ensures seamless integration and improved flexibility for environments transitioning to IPv6, while maintaining compatibility with existing IPv4 infrastructure.

Documentation and Resources 

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents