Adding Advanced User Synchronization Integration Agent (AUSI)

Advanced User Synchronization Agent Integration (AUSI) – New Agent:

  • The Advanced User Synchronization agent is our next generation Passly Directory Syncing agent.

  • This agent provides the ability to synchronize physical Active Directory with any Passly organization.

  • This agent will replace the legacy Directory synchronization agent going forwards.

  • This agent is currently a Beta version.
  • This is an server based agent sync. 
    - Physical Active Directory - Agent deployed on the Primary or Secondary Domain Controller.

Supported Operating Systems:

  • Windows Server 2016

  • Windows Server 2019

  • Windows Server 2022
    Note: Passly only supports this agent when installed on a Domain Controller for Physical Active Directory. 

Directory Types supported:

  • Physical Active Directory

Deployment location

  • Physical Active Directory - Must be installed on the Domain Controller (Primary or Secondary is acceptable). 

Supported Microsoft .NET requirements:

  • Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931

  • Microsoft Windows Desktop Runtime - 6.0.13 (x64)

Prerequisites to sync a user from AD to Passly

Note: Users will only be added if the following four pieces of information are present:

  • First Name.

  • Last Name.

  • Email Address.

  • User Logon name.

image-20230504-093913.pngimage-20230504-093933.png

Note: If any of the above-noted data is missing from a user then the sync will stop and no further users will be added until the missing data is updated in Active Directory.

Deploying & Configuring Advanced User Synchronization Integration (AUSI)

  1. Access your Passly tenant via https://(companyname).my.passly.com
    Note: You must be a member of the Administrator Role to deploy and figure this agent. 
  2. Select Directory Manager from the left menu.
    mceclip0.png
  3. Select Directory Sync.
    mceclip1.png
  4. Select the Blue + sign to add a new agent.
    mceclip2.png
  5. Select the top icon for AUSI. 
    mceclip3.png
  6. Name the Agent.
    mceclip4.png
    Note: We suggest using the machine name where the agent is installed.
  7. Select your preferred Provisioning Policy
    mceclip5.png
    Note: We recommend using the Default Provisioning Policy while deploying or testing the agent.
  8. Optional. Password Policy. You can enable the option to Synchronize password changes from Passly to Active Directory. 
    mceclip8.png
    Note: This option is required if you want users to be able to reset their Active Directory via Passly.
    mceclip7.png
    Note: The Organization Password Policy must be updated via Directory Manager > Organizations > Specific Organization > Password Policy. 
    The Maximum Age & Minimum length need to make the Security policy applied in Group Policy for the Domain you are syncing. 
    mceclip6.png
  9. Select Add Agent.
    mceclip9.png
  10. Select the Agent from the list.
    mceclip10.png
  11. Select Download Installer.
    mceclip11.png
  12. Download the installer to the preferred Domain Controller. 
    mceclip12.png
    Note: Ensure that the installer is copied to the local drive for the chosen Domain Controller. This installer does not support
     cross-Network installations. 
  13. Run the Installer elevated to prevent issues from UAC (Universal Account Controls). 
    mceclip0
  14. Select Yes if prompted by UAC.  
  15. Select Install.
    mceclip1
  16. Select Next to install the agent. 
    mceclip2
  17. Agree to the Terms of Use to continue installations. 
    mceclip3
  18. Select Next to continue the installation of the agent.
    mceclip4
  19. Enter the Agent profile data to continue. 
    Home Realm:
    ID:
    Key:
    mceclip5
    Note: These values are confirmed in the Passly UI and visible on Step 11.
    mceclip6
    Note: The Home realm is your tenant URL https://(companyname).my.passly.com
    Note: Use the Home realm for the organization or sub-organization that you are installing to Example: organization: https://(companyname).my.passly.com or sub-organization: https://(client-companyname).my.passly.com
  20. Select Save Changes. 
  21. Select Next to continue the installation.
  22. Chose Automatically Create a Service Account in Active Directory.
  23. Select Install:
    image-20230504-083447.png

  24. Select Finish to complete the installation. 
    image-20230504-083530.png

  25. Click Close to complete the installation. 
    image-20230504-083622.png

  26. Navigate to Directory Manager > Directory Sync. Select the newly created AUSI Agent.
    Note: If you refresh the page. The agent status should change from Created to Active:
    image-20230504-085028.png

  27. Select the new AUSI Agent.

  28. Select the Organizational Units tab.

  29. Select the required Organizational Units.
    Note: Selecting Organizational Units will allow you to define what items from Active Directory should be synchronized.
    Note: Run Full Synchronization button allows you to initiate full synchronization anytime. This function will update OU and synchronize Users and Groups.
    image-20230504-085945.png

  30. Scroll down and clickSave Changes’:
    image-20230505-103706.png
  31. Congratulations AUSI installation is done! You can now use AUSI Agent.

Have more questions?

Contact us

Was this article helpful?
0 out of 0 found this helpful

Provide feedback for the Documentation team!

Browse this section