Microsoft Active Directory account details

To establish a connection to Microsoft Active Directory, you must add an account that defines the account details to connect with. You can define these details by creating a configuration object in the App Connect Dashboard, the Red Hat® OpenShift® web console or CLI, or the Kubernetes CLI.

Account parameters

You can define one or more accounts for Microsoft Active Directory.

For each account that you require, you can specify a new set of account details in any of the following ways:

  • If you are using the App Connect Dashboard, either complete the Account details fields in the Create configuration panel, or specify the account parameters in an accounts.yaml file before importing it into the Create configuration panel. For more information, see Accounts type.
  • If you are using the Red Hat OpenShift web console or CLI, or the Kubernetes CLI, specify the account parameters in an accounts.yaml file, and then use this configuration file to create a configuration object. For more information, see Creating the file for a configuration object of type Accounts.

The set of required and optional Account fields or parameters are listed in the following table.

If necessary, work with your Microsoft Active Directory server administrator to obtain the values for these parameters.

Field Parameter Values Condition Description

Account name

name

User defined

Required

The name of a Microsoft Active Directory account that is used in the exported flow.

Principal Distinguished Name

adminDn

User defined

Required

The distinguished name of the Microsoft Active Directory user; for example, CN=user,OU=organization,DC=mydomain,DC=com.

Password

password

User defined

Required

The password that is associated with the distinguished name of the user.

Microsoft Active Directory URL

endpointUrl

User defined

Required

A valid Microsoft Active Directory URL in the format ldap://host_or_IPaddress:port.

Example

Remember: An accounts.yaml file that defines one or more accounts must always begin with the following line:
accounts:

  msad:
    - name: Account 1
      credentials:
        adminDn: 'CN=user,OU=organization,DC=acme,DC=com'
        password: 1Abcdef-ghi234567
      endpoint:
        endpointUrl: 'ldap://123.4.5.6:389'