Documentation Version: er2.0.28-docs-1.1

Active Directory Manager

If your organisation uses Active Directory Domain Services (AD DS) to manage the users on your network, you can connect to your Active Directory (AD) server and import those users into ER2's user list.

Importing a user list from your AD server copies your Active Directory user list into ER2. Changes made to ER2's user list does not affect the list imported from Active Directory.

Once the Active Directory user list is imported, ER2 will authenticate users with the Active Directory server.

Import A User List from AD DS


  2. On the ACTIVE DIRECTORY MANAGER page, click +Add.
  3. In the Add New Active Directory window, fill in the following fields:

    DomainEnter your AD domain name.

    LDAP ServerEnter the LDAP server's host name or IP address.

    Example: myLDAPServer

    Enable SSL


    Select to connect to the AD server over Secure Sockets Layer (SSL).
    CA Certificate File (optional)

    Only required if Enable SSL is selected and client authentication to the LDAP server is enabled. Click Browse to upload your CA Certificate.

    Base DN

    Enter your AD server's base DN.

    If you have an organisational unit called "Engineering" within the domain "", set the base DN as OU=Engineering,DC=example,DC=com.

    Users Filter

    Enter a search filter to retrieve a specific set of users.

    To retrieve users who are members of the group "ER Users" and organisational unit "Engineering" within the domain "", enter (memberOf=CN=ER Users,OU=Engineering,DC=example,DC=com).
    For more information on using AD search filters, see Microsoft: Search Filter Syntax.
    Computers Filter Enter a search filter to retrieve a specific set of computers.
    User nameEnter your AD administrator user name.
    PasswordEnter your AD administrator password.
  4. Click Test. If ER2 can connect to your Active Directory, the Test button changes to Commit.
  5. Click Commit.
Changes to Active Directory user accounts in ER2 are not synced with the Active Directory server. To change a user account password, change it on the Active Directory server.