Manualshelf

Specifications

ManualsBrandsShoreTel ManualsTelephonesAP110
61626364656667686970
Table Of Contents
ShoreTel 9.1 Page 63
Active Directory
Introduction
ShoreTel 9 integrates Active Directory with the ShoreTel directory to provide the following
functions:
Bulk Import of user accounts
Synchronize ShoreTel user accounts with Active Directory user records
Authentication of Active Directory users
Active Directory compliant directories centrally stores information for all users, computers,
and other entities. This feature adds the capacity to provision and authenticate user
accounts that are generated and maintained by other applications.
Refer to the Glossary for a definition of the following terms used in this release note:
Active Directory (AD)
DBImport
Explicit Authentication
Lightweight Directory Access Protocol (LDAP)
LDAPExport
Single Sign On (SSO)
Description
Directory services store organization information and settings in a central, organized,
accessible database. LDAP is the protocol used for exchanging information between client
applications and the serving directory. An LDAP directory allows administrators to assign
enterprise-wide policies, deploy programs to many computers, and apply critical updates to
an entire organization.
Active Directory (AD) is the Microsoft application that implements LDAP on Windows
based systems. AD is widely deployed among large enterprises.
The ShoreTel AD implementation supports the synchronization of user records between the
ShoreTel database and other applications using AD on Windows based networks.
ShoreTel AD includes the following features:
Authentication of AD Users, as described in Authenticating AD Users on page 66.
Synchronizing AD Directory and ShoreTel Director user records, as described in
Synchronizing AD and Director User Records on page 69.
Bulk Provisioning of User Accounts, as described in Bulk Provisioning of User
Accounts on page 70.
Active Directory Implementation
Active Directory Integration is an optional ShoreTel feature that is disabled by default.
Systems that disable AD Integration do not recognize links to the Active Directory for AD
properties attached to system users and do not provide AD authentication,
synchronization, or provisioning services.