![]() ![]() The following steps outline the required configuration (both in Dashboard and Active Directory) to allow for AD-based group policy application. If a domain user's group membership matches an AD group policy mapping in Dashboard, the MX can apply the associated group policy to the user's computer.īecause the MX is continuously gathering this information from the domain controllers, it is able to accurately apply the policy in real-time whenever a new user logs in.Group membership is added to a database on the MX.MX binds to DCs using LDAP/TLS to gather each user's AD group membership.MX reads WMI logon events from the DC's security events, to determine which users are logged into which devices.MX securely contacts the specified Domain Controllers for the AD domain, using TLS.The MX will run through the following steps to identify AD group members and apply associated group policies: Specifically, the events contain the IP address of the computer and the Windows username of the logged on user. These security events have critical information that tells the MX which user accounts are logged into which computers. The MX utilizes Microsoft's Windows Management Instrumentation (WMI) service to pull a continuous stream of Logon Security Events from specified Domain Controllers in the Active Directory domain. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |