If you are installing a new MiCollab system on a site with a directory service database, you can use IDS to seed the MiCollab Client directory with the corporate contacts from the directory service. For single MiVoice MX-ONE system sites, the directory service runs on a separate Active Directory server.
After initial configuration, the MiCollab Client directory receives corporate contacts updates from the directory service during scheduled database synchronizations. You can also use an IDS connection to an Active Directory server to support authentication of users.
Note: Do not use the IDS connection to Active Directory to create users in MiCollab. Create users from the MiVoice MX-ONE Provisioning Manager first and then synchronize them with the MiCollab database in order keep the data in sync. After you synchronize MiCollab user data (that was created from the MiVoice MX-ONE) from Active Directory, the directory attribute fields will be added to the user.
To configure MiCollab IDS for MiVoice MX-ONE deployments:
Review the General Guidelines and Limitations.
Create a MiCollab synchronization account on the directory service domain. The account must have read access.
If Active Directory Authentication is required, you must create the IDS Connection to an Active Directory server. Ensure that a valid Certificate Authority (CA) has been configured for Active Directory. If Authentication is not configured, you must assign users new passwords from the communications platform.
Create a connection to the directory server:
Under Configuration, click Integrated Directory Service.
Click Add connection. The Add Integrated Directory Service connection page opens.
Complete the fields to create a connection. See Manage IDS Connections for field descriptions. At a minimum, you must
Select the Directory Server Type.
Enter the FQDN or IPv4 Address of the primary directory server
Enter the primary directory server username (in DistinguishedName field) and password.
If only contact synchronization is required, then check only Enable synchronization.
If additional attributes are to be mapped to existing users, then check only Enable synchronization.
If only Active Directory authentication is required, then check only Enabled Authentication only.
If Active Directory authentication and contact synchronization or additional attributes are required, then check both Enable synchronization and Enable authentication.
Set the Connection Method to TLS.
Click Save. MiCollab verifies the connection parameters and indicates if any errors are present.
Configure Authentication for user entries, if required.
If your server is using the default LDAP attributes, you do not need to modify the IDS Attribute Mappings. If not, clear the Use default attribute mappings box and then map the LDAP attributes to the following IDS attributes: Distinguished Name, First Name, Last Name, and Email. All other fields can have blank LDAP Attributes.
Note: Ensure that the contacts on the directory service contain entries in the fields that map to the following IDS attributes: Distinguished Name, First Name, Last Name, and Email.
Configure the contacts on the directory server.
Schedule synchronizations with the directory server database to occur on a regular basis during off-business hours (for example: daily at 12:00 am). These re-occurring synchronizations keep the MiCollab database up to date with changes that are entered on the directory server.
Under Configuration, click Integrated Directory Service.
Click Edit next to the directory service connection. The Manage IDS connections page opens.
Ensure the Re-initialize on next cycle box is clear.
In the Schedule field, set the schedule using the drop-down menus.
Click Save.
Perform an initial synchronization:
Under Configuration, click Integrated Directory Services.
Click the Sync link of the connection. The synchronization status is displayed at the top of the screen.
After the synchronization is complete, the contacts from the directory server database are added to the MiCollab Client corporate directory.
If you configured authentication, any users with an e-mail address will be sent a Welcome E-mail. The e-mail instructs the users to log into their MiCollab application interfaces using their directory service credentials
After the synchronization is complete, view and manage the detained updates from the MiVoice MX-ONE administration interface.