Due to additional security measures, we have implemented Multi-Factor Authentication (MFA) on this Support Portal. Please log in using your registered email ID or phone number. In case of any difficulty, kindly reach out to Seqrite Support by emailing us at "support@seqrite.com".
  1. Home
  2. Solutions
  3. How-To Articles
  4. How to Sync AD with EPS for Client installation

How-To Articles

How to Sync AD with EPS for Client installation

03-04-2020 16:36:45

Information:

This feature helps you synchronize the SEPS server with Active Directory groups.

Once you synchronize the group, the clients will get installed on all the endpoints which come under your domain network.

A periodic check is carried out to find if any new endpoint is added to your network. When a new endpoint is added, the client gets automatically installed on that endpoint.

You can also exclude certain endpoints from the Active Directory group so that the client is not installed on these endpoints.

Notes:

  • To synchronize with Active Directory your console should be installed on the domain machine or should be a member of the domain.
  • Synchronization cannot be done with 'Default' group.
  • Groups which are shown in Red Color are already synced with Active Directory.
  • The user should have permissions of “Domain Admins” to synchronize with Active Directory.
  • Synchronization time interval is GLOBAL.

Synchronizing with Active Directory

To synchronize Active Directory groups, follow these steps:

  • Log on to the Seqrite Endpoint Security Web console.
  • Go to Clients > Client Deployment > Through Active Directory.

How to Sync AD with EPS for Client installation

  • Under EPS Console, select a group.

In the right pane, Active Directory Container and Synchronization Interval of the selected group are displayed, if already synced.

  • Right-click a group and select Synchronize with Active Directory. The Select a Domain screen appears

  • Select a domain and click Next. The Authentication screen appears.

How to Sync AD with EPS for Client installation

  • Specify the user name in the format of "domain name\username" and enter a valid password and then click Next.

The Select Active Directory Container screen appears.

  • Select Domain Name or Active Directory Container for synchronization.

If you select a Domain Name, the whole Active Directory gets synced and if you select any Active Directory Container then only the selected container gets synced.

  • Click Next.

The Synchronization screen appears.

How to Sync AD with EPS for Client installation

In Synchronization Interval, type the time interval when a periodic check is to be performed for this group and then click Finish.

Time should be specified between 1 to 24 hours.

The SEPS server will be synchronized with the Active Directory as per specified interval.

Removing Synchronization

With this feature, you can remove the synchronization of a group in the following way:

  • Log on to the Seqrite Endpoint Security Web console.
  • Go to Clients > Client Deployment > Through Active Directory.
  • Under EPS Console, right-click a group that has already been synchronized and click Remove Synchronization.

The synchronization of the selected group is removed successfully.

How to Sync AD with EPS for Client installation

Editing Synchronization:

This feature gives you the flexibility to edit the time interval for carrying out periodic checks to find if a new endpoint is added to the network.

The frequency can be changed depending on how many and how often new endpoints are added.

To edit the time interval, follow these steps:

  • Log on to the Seqrite Endpoint Security Web console.
  • Go to Clients > Client Deployment > Through Active Directory.
  • Under EPS Console, right-click an already synched group and click Edit Synchronization.
  • The authentication screen for Synchronization with Active Directory appears.
  • Type the password and click Next. The Synchronization screen appears.
  • In the Synchronization interval text box, type the time interval. Time should be specified between 1 to 24 hours.
  • To save the new setting, click Finish. New synchronization setting is saved successfully.

Exclusion:

You can exclude endpoints from installation of EPS client when Active Directory is synchronized. EPS client will be not installed on the excluded endpoint. You can exclude endpoints by Host Name, IP Address or by IP Range.

To exclude an endpoint, follow these steps:

  • Log on to the Seqrite Endpoint Security Web console.
  • Go to Clients > Client Deployment > Through Active Directory.
  • On the Through Active Directory page, click the Exclusion button.
  • A pop up appears with the options about how you want to exclude an endpoint.
  • On the Exclude Endpoints screen, select one of the following:

Exclude by Host Name: If you select this option, type the Host Name and click Add. The endpoint is added to the Excluded Workstations list.

Exclude by IP Address: If you select this option, type the IP address and click Add. The endpoint is added to the Excluded Workstations list.

Exclude by IP Range: If you select this option, type the Start IP Address and End IP Address and click Add. The endpoints are added to the Excluded Endpoints list. To save your settings, click Save.

Please contact Seqrite Technical Support for more assistance.