When deploying Desktop Sync, administrators can define a list of Active Directory domains that machines need to be joined to in order for sync to proceed. This allows admins to control deployments of Desktop Sync to ensure that the product can only be used on devices joined to known domains.
If Desktop Sync is installed on a computer that is not joined to one of the specified domains, users will see the following message when they attempt to sync:
Sync is not permitted on this machine as it's not joined to an authorized domain.
The message will persist until the user's machine is joined to one of the white-listed domains or if the list of domains is updated in the cloud.
How to enable Device Entitlement for Desktop Sync
You can enable device entitlement for Desktop Sync by raising a support ticket to request for Desktop Sync device entitlement to be turned on with the following information:
- name of your Egnyte domain - eg. acme.egnyte.com
- list of fully qualified domain names for which sync should be allowed - eg. acme.com,acme.co.uk
To find AD domain information that you can supply on a specific device use the following commands:
Run the following command in a console window and look for domain name near the top of the resulting output:
Run the following command in a command prompt as an administrator on the machine and look for the 'Domain Name':
gpresult /scope computer /v
Device Entitlement on other clients
Note that device entitlement will also be added to the new Desktop App as part of our roadmap and will work off the same list of whitelisted domain names to allow/deny the addition of drives. Device entitlement is already supported on our mobile clients.