Securing the Active Directory Application

Secure the Active Directory application by using the following communication paths based on the operations performed.

Note
SailPoint recommends securing every communication path for the Active Directory application by following the configurations outlined below:

Source (VA) and Active Directory Domain Controller (for most of the read operations): TLS Configuration on Virtual Appliances is required to secure this path.
Source (VA) and IQService (for provisioning and read operations for Skype management): TLS Configuration Between VA and IQService is required to secure this path. For more information, refer to Configuring TLS and Client Authentication for IQService.
IQService and Active Directory Domain Controller (for provisioning and read operations for Skype management): TLS configuration between IQService and Active Directory Domain Controller is required to secure this path.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Securing the Active Directory Application

Documentation Feedback