Submit a ticketCall us

Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.

 

 

 

 

Home > Success Center > Log & Event Manager (LEM) > SolarWinds LEM 6.3 User Guide > Configuring the Directory Service Query Connector

Configuring the Directory Service Query Connector

Configure the Directory Service Query connector on your LEM Manager to enable the LEM Manager to establish an LDAP connection to your Active Directory server to import your organizational groups. Once the connector is running on your LEM Manager, complete the second procedure to specify the groups you want to import for use in your filters, rules and searches.

Before you configure the directory service query connector, locate the following:

  • Fully qualified domain name of your directory service server
  • IP address or hostname of your directory service server
  • Domain credentials for an account that can be used by the Directory Service Query connector

You can find information on the directory service server by typing nslookup on the command prompt in Windows with the assumption that your LEM is on the correct network.

  1. Log in to the LEM console as an administrator.
  2. Access the targeted LEM manager.
  3. Click Manage > Appliances in the LEM console.
  4. Click the gear icon next to your LEM manager and select Connectors.
  5. Enter Directory Service Query in the search box on the Refine Results pane.
  6. Click the gear icon next to the master connector on the right and select New.
  7. Complete the Directory Service Query connector form.

    1. Enter the fully qualified domain name for your directory service server using lower case characters in the Domain Name field.

      For example, solarwinds.com.

    2. Enter the IP address or hostname of your directory service server in the Directory Service Server field.

      SolarWinds recommends using the IP address to avoid possible DNS issues. The LEM network configurations (netconfig) allow for setting or changing the DNS server to resolve the host.

    3. Enter the domain credentials for a user account that the connector can use.

      SolarWinds recommends using a service account with a non-expiring password, otherwise you will have to manually update the connector every time the password expires. This account does not need elevated privileges. When entering domain credentials, provide only the username.

    4. Enter the domain credentials for a user account that the connector can use.

      SolarWinds recommends using a service account with a non-expiring password, otherwise you must manually update the connector every time the password expires. This account does not need elevated privileges. When entering domain credentials, provide only the username.

  8. When finished, click Save.
  9. Locate the new instance of the connector. It will have a grey icon in the Status column.
  10. Click the gear icon next to the new connector and select Start.

A green icon in the Status column indicates that the connector is running and the Test Domain Connection button can be used to test your settings. This operation displays its results as an alert in the SolarWinds Alerts filter. It does not display a popup message.

Import your organizational groups using the Directory Service Query connector

When you complete this procedure, the system will synchronize your directory service groups with the LEM manager and continue the synchronizing process every five minutes as long as the connector is running.

  1. Open the Build > Groups view of your LEM Console.
  2. Click the plus button in the upper right corner and select Directory Service Group.
  3. In the details pane at the bottom of the LEM Console window, select a group category from the folder tree on the left to populate the Available Groups pane on the right.
  4. Check the boxes next to the groups you want to import into your LEM Manager.
  5. Repeat Steps 3 and 4 until you have selected all of the groups you want to import into your Manager.
  6. Click Save.

Create a domain user with log in rights

  1. Open the Console and go to Build > Users.
  2. Click the gear icon at the top right, and then click + and select Directory Service User.
  3. Select the user from the group/OU to be given login rights to the LEM console.

    Ensure that an email address is associated with the user. The email address should automatically be displayed under Contact Information. Otherwise, it means Active Directory is not configured to provide this and you will be unable to send email notifications to this user. You can create the email address or add it to a local user when rules fire.

  4. Click Save.
Last modified
16:51, 20 Feb 2017

Tags

Classifications

Public