Adding endpoints using an Active Directory domain server
Endpoints can be manually imported from an AD server. You can import and synchronize information about computer accounts with an LDAP or LDAPS service. You can add endpoints by identifying endpoints that are part of an AD domain server.
An instructional video on how to add a domain is available in the Fortinet Video Library.
You can add the entire domain or an organizational unit (OU) from the domain.
- Go to Endpoints > Manage Domains > Add. The Domain pane displays.
- Configure the following options:
Enter the domain's IP address or hostname.
Enter the port number.
Enter the distinguished name (optional).
Available when Bind Type is set to Regular. Enter the username.
Available when Bind Type is set to Regular. Enter the user password.
Available when Bind Type is set to Regular. Turn on and off to show or hide the password.
Turn on to enable a secure connection protocol when Bind Type is set to Regular.
Enter the sync schedule between FortiClient EMS and the domain in minutes. The default is ten minutes.
- Click Test to test the domain settings connection.
- If the test is successful, select Save to save the new domain. If not, correct the information as required, then test the settings again.
After importing endpoints from an AD server, you can edit the endpoints. These changes are not synced back to the AD server.