Fortinet black logo

Use Cases

Home FortiClient 6.0.3 Use Cases

Adding endpoints using an Active Directory Domain service

6.0.3
6.0.3
Copy Link
Copy Doc ID 071aa83e-d7c4-11e8-8784-00505692583a:393627
Download PDF

Adding endpoints using an Active Directory Domain service

First, you must import the desired endpoints into FortiClient EMS. In this scenario, you will add endpoints using an Active Directory (AD) domain server.

note icon

You can also use workgroups to deploy FortiClient software, although you cannot use workgroups to deploy an initial installation of FortiClient to endpoints. After FortiClient is installed on endpoints and endpoints are connected to FortiClient EMS, you can use workgroups to uninstall and update FortiClient on endpoints. See the FortiClient EMS Administration Guide for details.

Endpoints can be manually imported from an AD server. You can import and synchronize information about computer accounts with an LDAP or LDAPS service. You can add endpoints by identifying endpoints that are part of an AD domain server.

An instructional video on how to add a domain is available in the Fortinet Video Library.

You can add the entire domain or an organizational unit (OU) from the domain.
  1. Go to Endpoints > Manage Domains > Add. The Domain pane displays.

  2. Configure the following options:

    IP address/Hostname

    Enter the domain's IP address or hostname. In this example, the AD server's hostname is example.com.

    Port

    Enter the port number. In this example, the port number, 636, is the default value when LDAPS connection is enabled.

    Distinguished name

    Enter the distinguished name. This field is optional.

    Bind type

    Select the bind type: Simple, Anonymous, or Regular. In this example, Regular was selected.

    Username

    Enter the username for the AD server.

    Password

    Enter the user password for the AD server.

    Show Password

    Turn on and off to show or hide the password.

    LDAPS connection

    Turn on to enable a secure connection protocol when Bind Type is set to Regular.

    Sync every

    Enter the sync schedule between FortiClient EMS and the domain in minutes. In this example, the sync schedule has been configured as 60 minutes.
  3. Click Test to test the domain settings connection.
  4. If the test is successful, select Save to save the new domain. If not, correct the information as required, then test the settings again.
note icon

After importing endpoints from an AD server, you can edit the endpoints. These changes are not synced back to the AD server.
Previous
Next

Adding endpoints using an Active Directory Domain service

First, you must import the desired endpoints into FortiClient EMS. In this scenario, you will add endpoints using an Active Directory (AD) domain server.

note icon

You can also use workgroups to deploy FortiClient software, although you cannot use workgroups to deploy an initial installation of FortiClient to endpoints. After FortiClient is installed on endpoints and endpoints are connected to FortiClient EMS, you can use workgroups to uninstall and update FortiClient on endpoints. See the FortiClient EMS Administration Guide for details.

Endpoints can be manually imported from an AD server. You can import and synchronize information about computer accounts with an LDAP or LDAPS service. You can add endpoints by identifying endpoints that are part of an AD domain server.

An instructional video on how to add a domain is available in the Fortinet Video Library.

You can add the entire domain or an organizational unit (OU) from the domain.
  1. Go to Endpoints > Manage Domains > Add. The Domain pane displays.

  2. Configure the following options:

    IP address/Hostname

    Enter the domain's IP address or hostname. In this example, the AD server's hostname is example.com.

    Port

    Enter the port number. In this example, the port number, 636, is the default value when LDAPS connection is enabled.

    Distinguished name

    Enter the distinguished name. This field is optional.

    Bind type

    Select the bind type: Simple, Anonymous, or Regular. In this example, Regular was selected.

    Username

    Enter the username for the AD server.

    Password

    Enter the user password for the AD server.

    Show Password

    Turn on and off to show or hide the password.

    LDAPS connection

    Turn on to enable a secure connection protocol when Bind Type is set to Regular.

    Sync every

    Enter the sync schedule between FortiClient EMS and the domain in minutes. In this example, the sync schedule has been configured as 60 minutes.
  3. Click Test to test the domain settings connection.
  4. If the test is successful, select Save to save the new domain. If not, correct the information as required, then test the settings again.
note icon

After importing endpoints from an AD server, you can edit the endpoints. These changes are not synced back to the AD server.
Previous
Next