Category filter
UEM deployment guide for Active Directory
Integrating Active Directory Domain Services (AD DS) with Hexnode UEM establishes a secure, bidirectional link between your on-premises identity infrastructure and your cloud management console. This synergy allows IT administrators to leverage existing directory objects for users, groups, and Organizational Units (OUs) to automate device provisioning and enforce role-based security policies across the fleet.
Unifying Directory Services and Endpoint Management via Hexnode
The integration bridges your internal directory database with the Hexnode cloud. By installing the Hexnode Cloud Broker agent on your server, you can securely sync users and groups to your Hexnode UEM console.
This synergy transforms AD into the central source of authentication (Identity Provider) while Hexnode handles endpoint management, allowing for:
- Unified Management: Consolidating corporate resources without manually recreating users in the UEM.
- OAuth Authentication: Utilizing AD credentials for end-user enrollment and technician portal access.
How to integrate Active Directory with Hexnode?
The integration requires setting up the Hexnode Cloud Broker agent to facilitate secure communication between your local server and the Hexnode cloud.
Step 1: Download Agent & Configuration
- Log in to your Hexnode console.
- Navigate to Admin > Active Directory. This opens the Agent Settings page.
- Click the first Download link to get the Hexnode Cloud Broker agent installer.
- Click the second Download link to get the specific configuration file for your portal.
Step 2: Install Hexnode Cloud Broker
- Launch the Hexnode Cloud Broker Setup Wizard on your Windows server.
- Click Next to proceed.
- Select Destination: By default, the wizard installs the agent in C:\Hexnode Cloud Broker. You can change this if necessary.
- Upload Config: Select the configuration file downloaded in Step 1 and click Next.
- Click Install to begin the process.
- Once complete, click Finish.
Step 3: Configure & Verify
- Return to the Hexnode console (Admin > Active Directory).
- Click Check Agent Status to verify connectivity.
- Once connected, click Configure AD to select the domains and OUs (Organizational Units) you wish to sync.
What are the benefits of integrating AD with UEM?
Integrating AD DS with UEM enhances security and operational efficiency.
| Benefit | Description |
|---|---|
| Centralized Management | Achieve a single pane of glass for endpoint and user rights management. Leveraging AD Group Policies allows for centralized control over user configurations. |
| Single Sign-On (SSO) | Streamlines access by cross-referencing user IDs against the AD database. Users access authorized data via Hexnode using their standard domain credentials. |
| Enhanced Security | Supplements Hexnode’s security features with AD’s authorization frameworks, ensuring only authenticated personnel can enroll devices or access the console. |
| Automated Updates | Eliminates data silos. You can schedule automatic sync intervals to ensure that any changes in the AD domain (new hires, role changes) are instantly reflected in Hexnode. |
What features does this integration unlock?
This AD deployment guide mdm highlights several key capabilities unlocked by the integration.
| Feature | Functionality |
|---|---|
| Database Synchronization | Sync existing organizational directory resources (Users, Groups, OUs) with Hexnode, bypassing the need to set up users from scratch. Supports multiple AD domains. |
| Effortless Deployment | Users can enroll devices using their corporate AD username and password, ensuring that device ownership is correctly mapped during onboarding. |
| Technician SSO | IT admins can log in to the Hexnode web console using their AD credentials, simplifying access management for the technical team. |
| Targeted Policies | Policies can be targeted specifically to AD Users, Groups, or Domains, allowing for dynamic policy application based on employee roles. |
