When deploying Desktop App (v3.x.x+) or Desktop Sync (v9.1.x+), Administrators can define a list of Active Directory domains that local user accounts need to be set up in to use either app. This allows Admins to control deployments of both applications to ensure they are only used on user accounts joined to known domains.
If a user from a domain that is not one of the specified domains attempts to use Desktop Sync or the Desktop App, they will see a message informing them they are not authorized or permitted to sync or connect to the cloud.
The message will persist until the user's machine is joined to one of the allowed domains or if the list of domains is updated in the cloud. With the Desktop App, users' drives are removed, and users are notified that their device is not authorized to connect to the specified Egnyte domain.
Enable Device Entitlement for the Desktop App and Desktop Sync
You can enable device entitlement for the Desktop App and Desktop Sync by raising a support ticket to request for device entitlement to be turned on with the following information:
- Name of your Egnyte domain (e.g., acme.egnyte.com)
- List of fully qualified domain names for which sync should be allowed (e.g., acme.com,acme.co.uk)
Note: Turning on device entitlement will affect both Desktop Sync and the Desktop App.
To find AD domain information that you can supply on a specific device using the following commands:
Run the following command in a console window and look for domain name near the top of the resulting output:
Run the following command in a command prompt as an administrator on the machine to find the fully qualified domain name:
gpresult /scope computer /v
Device Entitlement on Other Clients
Device entitlement is also available on Egnyte's mobile clients.