Egnyte Active Directory Connector (AD Kit) allows admins to extract user records and related metadata from your directory service into the Egnyte file server. Since each business may configure directory services differently, the integration scripts can be customized to run in the environment. By deploying the AD Kit integration, admins can automatically load a subset or all users and groups into the Egnyte directory service. Furthermore, as new users and groups are created or deactivated within the directory service and Egnyte file server will sync these changes.
When users attempt to log in to Egnyte, Egnyte can be set up to authenticate directly against the directory service. This ensures that you don’t have to manage passwords in two separate places. The directory service can serve as the system of record for all password information, and Egnyte will utilize this information to authenticate the user.
- Egnyte Active Directory Connector (AD Kit) is available to customers on Business and Enterprise plans.
- The integration is currently supported only with Microsoft Active Directory Services (ADS).
- Directory service authentication is only supported for Admins and Power Users and not available for Standard Users.
- Please refer to the mixed mode authentication section below for managing both Power and Standard Users.
Installation
Mixed Mode Authentication
Supported Access Points
Additional Resources
Installation
Download the Egnyte ADKit v4.17.2
For detailed installation instructions, check out our Active Directory Guide
Mixed Mode Authentication
Egnyte has been set up to allow a mixed mode authentication, where some users are externally authenticated through your directory service or a supported Single Sign-on provider, and others are authenticated directly through the Egnyte file server.
Admins can use a combination of directory service and SSO provider to externally authenticate users within the environment, however, individual users will authenticate against one or the other — not both.
For example, assume there are only employee records set up in the directory service, but the plan is to use Egnyte for file sharing between the employees (who are Power Users) and business partners (who are Standard Users). Since the business partner user data is not a part of the directory service, admins can set up Egnyte to authenticate all the employees against directory service and all business partners against the Egnyte file server. This allows expanding the file sharing easily without making additional investments in the directory service.
To obtain the parameters required for the integration and exact implementation steps, please review the Active Directory Guide.
Supported Access Points
Egnyte is able to authenticate users against the directory service for all access points. This includes our Web Interface, Mobile apps, Desktop Applications, Storage Sync, Outlook plugin, and FTP.
Additional Resources
Still have questions? Want to learn more? These resources can help.
Active Directory Product Guide
Active Directory (AD Kit) Configuration Parameters