Specifications
28
Organizational Units (OUs)
In Active Directory, ‘Organizational Units’ (OUs) are the key structure for organizing users,
computers, and other object information into a more easily understandable layout.
As the diagram below shows the organization structure has a root OU with three nested OUs below.
This nesting enables the organization to distribute users across multiple logical structures for easier
administration of network resources.
When activated, the appliance takes the current Active Directory groups and maps them directly to
groups.
The appliance also creates all internal data for each user within the chosen OUs. Each user will be
assigned to the mapped roles.
Organizational Unit Filter
The Organizational Unit Filter makes adding OUs easier.
Entries in the filter must be of the form ‘OU=<Organizational Unit name>’. For example,
‘OU=Research’.
If an OU is held below another OU then the entire hierarchy up to the parent OU must be listed. If an
OU called ‘Marketing’ was stored under the ‘Employees’ OU; to add ‘Marketing’ the correct syntax
would be ‘OU=Marketing, OU=User’ with the separating comma being used to separate each
element in the hierarchy.
To add all OUs in the domain simply leave the Filters list box empty. When the list box is empty, all
OUs will be queried. If problems are encountered with Active Directory, try clearing the list box.
To remove an OU from the search use the exclusion operator # against the OU name. For example to
exclude the Test Accounts from the search you would add #OU=Test Accounts.
Troubleshooting
If your users are unable to connect via Active Directory, check that: