Get a Quote

Articles in this section

See more

Sync AD groups to products

  • Updated:

Introduction

This task will create self-service products based on groups that exist in Active Directory. Once the Self-Service products are created, users with proper permissions may request membership to those groups by requesting the associated product via their HelloID dashboard. Learn more about self service requests here.

In order to synchronize members to the generated products, see HelloID Product Ownership Sync.

Note: In order for users to be added or removed from the groups associated with the generated products, you must fill out the Default AD Domain property in Company Settings. Learn more about this setting here.

Task Settings

Name

Description

Example

Comment

HelloID API key

The key value of a HelloID API key.

TYZAJTCEWBVBJXEPSFNXUVUBYEAJPPLA

Learn more about API keys here.

HelloID API secret

The secret value of a HelloID API key

dZqAfxYzLpethsgrzzwLgAVyDXcDSurG

Learn more about API keys here.

Prefix of product name

This string will be added at the beginning of each new product's name.

AD Sync Group

If you have a group called "Accounting", and you provide a prefix of "AD Sync Group", the new product name would be "AD Sync Group Accounting".

Prefix of product description

This string will be added at the beginning of each new product's description

AD Sync Group Description

This value must be set for consistent operation.

FA-Icon name

The name of the Font Awesome icon that will be associated with the new product.

group

 For more valid icon names, see the Font Awesome cheat sheet here.

HelloID product category

The name of the category to which the product will be associated. If no category of this name exists, a new one will be created.

General

 Learn more about product categories here.

HelloID Approval Workflow

The name of the workflow that will be launched when a user requests the product.

Auto Approve

 Learn more about approval workflows here.

The default manager

The HelloID username of the person who will be the manager of the new product if the AD group does not have a manager.

jdoe@enyoi.org

  

The Active Directory OU path

The base OU path in which HelloID should search for groups, specified as the distinguished name.

OU=groups,DC=enyoi,DC=local

  

The Active Directory search filter

You may filter the resulting groups by their name. (Optional)

 *HelloID*

 Use an asterisk as a wildcard character in your filter. In the example of "*HelloID*", the filter will match any group that contains the string "HelloID".