Integrating SailPoint with Active Directory
Revised Date: 20 November 2024
This document is designed to give specific information about the requirements and field definitions needed to get a working instance of an Active Directory connector in
Note
To view the latest features, enhancements, and fixes for all SaaS connectors, refer to the SaaS Release Notes page.
The SailPoint Active Directory connector offers complete management of your Active Directory infrastructure, which can be distributed across multiple domains/multiple forests. You can manage users, contacts, groups, Exchange mailbox, mail users, mail contacts, and Skype users front a single source.
For more information on what you can do with the Active Directory connector, refer to Supported Features.
Architecture
There are three main architecture components:
-
Identity Security Cloud
-
Virtual Appliance Cluster (virtual appliances are in the customer's-controlled environment and updated by SailPoint) with Cloud Connector Gateway (CCG)
-
Customer Environment
Note
SailPoint recommends reviewing the Virtual Appliance and Cloud Connector Gateway documentation before starting the configuration of your connector.
The Identity Security Cloud has the UI and the REST API interface. This interface has the following internal services:
-
SSO
-
Access Review
-
Password
-
Provisioning
-
Task Processing Engine (performs aggregation, refresh, synchronization operations, and serves multiple tenants)