Active Directory integrated mode uses Windows user passwords and as a result, users are not required to remember and maintain different passwords, even if the Windows password changes. Additionally, IT managers do not carry the additional burden of managing users in different applications. If a Windows user account is disabled, that user will not be allowed to log on to Symphony.
When the authentication mode is set to Active Directory, the user name is stored in the Symphony database, but not the password. Additionally, a mapping to the Active Directory user is stored (the Security Identifier, or SID). When a user attempts to log on, the credentials are checked against Active Directory. If Active Directory accepts the credentials, the user is allowed to log on.
|
For Active Directory integrated mode to be used, Professional & Enterprise licenses must be used. A Standard license will restrict access to this feature. If you are using Active Directory Mode, you cannot join Enterprise Management. |