Manualshelf

Specifications

ManualsBrandsShoreTel ManualsTelephonesAP110
61626364656667686970
Table Of Contents
ShoreWare Server Release Notes Active Directory
ShoreTel 9.1 Page 69
Synchronizing AD and Director User Records
Director provides an interface for adding, updating, and deleting AD users from the
ShoreTel database. Synchronization is performed on individual users and does not affect
the AD directory.
1
Enabling AD for a ShoreTel User
When AD Integration is enabled, the first parameter on the Edit User: General panel
enables Active Directory for the user, as shown in Figure 29.
To enable Active Directory for a user, enable the Active Directory User option at the top of
the panel, then enter the domain\user name for the user, as shown in Figure 29.
Updating AD Fields
Active Directory users can synchronize user account records with contents from the Active
Directory database by pressing the Sync from AD button located left of the user’s Active
Directory user ID. Pressing the Show From AD button displays parameter settings for the
user’s Active Directory account.
The Show From AD and Sync From AD buttons are inactive for users accessing this panel
that are not configured as AD users.
Removing AD Users
When an administrator attempts to delete a user with an AD account, ShoreWare displays a
warning message and requires confirmation before removing the record from the ShoreTel
database.
1. The authentication process is defined between the computer running the HQ server and the computer
hosting Active Directory. Authenticating AD records from a different computer involves Delegation, which
is defined by Microsoft as a process where a trusted account impersonates the account that has AD access
permission – in this case, from the computer hosting the HQ server.
Authentication Delegation is available in most ShoreTel configurations, allowing AD queries through the
Edit User panel from any computer running Director. If a problem arises when attempting to access AD
information through the Edit User panel from a remote device, access Director through an intranet URL
from the computer hosting the Headquarters Server software.
For more information about Authentication Delegation, refer to Microsoft technical software.
Figure 29 Enabling Active Directory for a User