Skip to main content
Skip table of contents

Integrate Identity Manager with Active Directory

This article describes how to set up Microsoft Active Directory (AD) as data source for Smart ID Identity Manager. In general, Identity Manager communicates with AD via LDAP or LDAPS protocol.


The following prerequisites apply: 

  • A domain controller can be reached from the Identity Manager server via corresponding ports (standard ports are 389 for LDAP and 636 for LDAPS on Active Directory).
  • A domain user service account is available in AD and has sufficient permissions on the objects for the relevant use cases in Identity Manager.
  • The organization unit (OU) and domain components (DC) to be synchronized with Identity Manager are defined. For example, OU=Employee, DC=example, DC=com. 

Step-by-step instruction

  1. Set up data pool in Identity Manager with an LDAP data source. 
  2. Set up scheduled jobs in Identity Manager with the LDAP data pool. 
  3. Configure LDAPS if required.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.