Active Directory provider settings

You can view or modify the advanced settings for an Active Directory provider.

Setting
Description
Services For UNIX
Specifies whether to support RFC 2307 attributes for domain controllers. RFC 2307 is required for Windows UNIX Integration and Services For UNIX technologies.
Map to primary domain
Enables the lookup of unqualified user names in the primary domain. If this setting is not enabled, the primary domain must be specified for each authentication operation.
Ignore trusted domains
Ignores all trusted domains.
Trusted Domains
Specifies trusted domains to include if the Ignore Trusted Domains setting is enabled.
Domains to Ignore
Specifies trusted domains to ignore even if the Ignore Trusted Domains setting is disabled.
Send notification when domain is unreachable
Sends an alert as specified in the global notification rules.
Use enhanced privacy and encryption
Encrypts communication to and from the domain controller.
Home Directory Naming
Specifies the path to use as a template for naming home directories. The path must begin with /ifs and can contain variables, such as %U, that are expanded to generate the home directory path for the user.
Create home directories on first login
Creates a home directory the first time that a user logs in if a home directory does not already exist for the user.
UNIX Shell
Specifies the path to the login shell to use if the Active Directory server does not provide login-shell information. This setting applies only to users who access the file system through SSH.
Query all other providers for UID
If no UID is available in the Active Directory, looks up Active Directory users in all other providers for allocating a UID.
Match users with lowercase
If no UID is available in the Active Directory, normalizes Active Directory user names to lowercase before lookup.
Auto-assign UIDs
If no UID is available in the Active Directory, enables UID allocation for unmapped Active Directory users.
Query all other providers for GID
If no GID is available in the Active Directory, looks up Active Directory groups in all other providers before allocating a GID.
Match groups with lowercase
If no GID is available in the Active Directory, normalizes Active Directory group names to lowercase before lookup.
Auto-assign GIDs
If no GID is available in the Active Directory, enables GID allocation for unmapped Active Directory groups.
Make UID/GID assignments for users and groups in these specific domains
Restricts user and group lookups to the specified domains.