Help
  • Explore Community
  • Get Started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
Notifications
Login / Register
Community
Community
Notifications
close
  • Forums
  • Knowledge Center
  • Events & Webinars
  • Ideas
  • Blogs
Help
Help
  • Explore Community
  • Get Started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
Login / Register
Sustainability
Sustainability

Join our "Ask Me About" community webinar on May 20th at 9 AM CET and 5 PM CET to explore cybersecurity and monitoring for Data Center and edge IT. Learn about market trends, cutting-edge technologies, and best practices from industry experts.
Register and secure your Critical IT infrastructure

How to integrate Active Directory with Security Expert

Building Automation Knowledge Base

Schneider Electric Building Automation Knowledge Base is a self-service resource to answer all your questions about EcoStruxure Building suite, Andover Continuum, Satchwell, TAC…

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • Home
  • Schneider Electric Community
  • Knowledge Center
  • Building Automation Knowledge Base
  • How to integrate Active Directory with Security Expert
Options
  • Bookmark
  • Subscribe
  • Email to a Friend
  • Printer Friendly Page
  • Report Inappropriate Content
Invite a Co-worker
Send a co-worker an invite to the portal.Just enter their email address and we'll connect them to register. After joining, they will belong to the same company.
You have entered an invalid email address. Please re-enter the email address.
This co-worker has already been invited to the Exchange portal. Please invite another co-worker.
Please enter email address
Send Invite Cancel
Invitation Sent
Your invitation was sent.Thanks for sharing Exchange with your co-worker.
Send New Invite Close

Related Forums

  • Intelligent Devices Forum

Previous Next
Contributors
  • RobertAndriolo
    RobertAndriolo
  • AdamSteele
    AdamSteele
  • Jonathan
    Jonathan

Invite a Colleague

Found this content useful? Share it with a Colleague!

Invite a Colleague Invite
Back to Building Automation Knowledge Base
Options
  • Bookmark
  • Subscribe
  • Email to a Friend
  • Printer Friendly Page
  • Report Inappropriate Content
1 Like
3800 Views

Link copied. Please paste this link to share this article on your social media post.

Trying to translate this page to your language?
Select your language from the translate dropdown in the upper right. arrow
Translate to: English
  • (Français) French
  • (Deutsche) German
  • (Italiano) Italian
  • (Português) Portuguese
  • (Русский) Russian
  • (Español) Spanish

How to integrate Active Directory with Security Expert

Kirk AdamSteele Kirk
‎2019-06-13 06:57 PM

Issue

Understand methods for integrating Security Expert with Active Directory for creation and management of Operators and Users.

Product Line

EcoStruxure Security Expert

Environment

  • Security Expert
  • Active Directory
  • SX-AD-OPR
  • SX-AD-USR
  • SX-DB-SYNC

Cause

Security Expert Active Directory Integration provides synchronization and authentication for Active Directory users enabling organizations to leverage on the user management and security policies that Active Directory provides. This article looks at the details between each integration option.

Resolution

There are four options for Active Directory Integration.

1. Default Windows Authentication option.

  • This allows for logging in to Security Expert with the Windows User account credentials which could include AD users if on a Domain.
    • Operator object must be created in Security Expert and configuration of windows authentication option has some specific steps to be followed for it to work.
      Unable to login to Security Expert using Windows Authentication
    • Remember to use syntax "<domain>\<username>" for the username when configuring the Operator for a Windows user ON a  Domain.
    • Remember to use syntax "<computername>\<username>" for the username when configuring the Operator for a Windows user that is NOT on a Domain.
  • No extra license is required for this.

2. SX-AD-OPR : License for adding Security Expert Operators from AD.

  • Security Expert Operators will need to be added manually using the following steps:
    1. Navigate to Operators and click Add.
    2. Check the Windows Authentication box.
    3. Click the ellipsis adjacent to the User Name.
    4. Use the Active Directory Users window to search for the AD credentials you wish to use.
  • Once the Operator has been added, you may check the Windows Authentication option when logging in.

3. SX-AD-USR : License for adding Security Expert Users from AD.

  • This will allow an active directory domain windows group to be periodically polled for updates that will in turn update the Users in Security Expert.
    • Individual options for importing users, disabling user if AD user is disabled, disabling user if AD user is deleted.
    • Only user names are imported, other than this only action can be disabling of users in Security Expert. No other details can be updated or added.
  • See application note AN-141 Security Expert LDAP User Import Configuration.

4. SX-DB-SYNC : Data Sync Service with Powershell script.

  • Powershell script pulls user details out of AD and writes to a CSV file that the Data Sync Service then imports into Security Expert.
    • Can perform more functions than SX-AD-USR as any attribute from AD users can be mapped to any attribute in Security Expert users.
    • Will require use of powershell experience as the sample script will likely need to be tweaked.
  • Here is a really good video Using Data Sync to Transfer Information from Active Directory to ProtegeGX on using Windows Active Directory as a source of Users/Operators for the Data Sync Service. It provides a good overview of how this is accomplished and how easy it can be to setup.
  • See Security Expert Data Sync Service and sample Powershell script SXFetchADUsers.zip attached

 

Labels (1)
Labels:
  • EcoStruxure Security Expert
Attachments
SXFetchADUsers.zip
Tags (5)
  • Find more articles tagged with:
  • AdamSteele19
  • AdamSteele22
  • AdamSteele23
  • AdamSteele24
  • JonathanHernandez20
Was this article helpful? Yes No
100% helpful (3/3)

Link copied. Please paste this link to share this article on your social media post.

To The Top!

Forums

  • APC UPS Data Center Backup Solutions
  • EcoStruxure IT
  • EcoStruxure Geo SCADA Expert
  • Metering & Power Quality
  • Schneider Electric Wiser

Knowledge Center

Events & webinars

Ideas

Blogs

Get Started

  • Ask the Community
  • Community Guidelines
  • Community User Guide
  • How-To & Best Practice
  • Experts Leaderboard
  • Contact Support
Brand-Logo
Subscribing is a smart move!
You can subscribe to this board after you log in or create your free account.
Forum-Icon

Create your free account or log in to subscribe to the board - and gain access to more than 10,000+ support articles along with insights from experts and peers.

Register today for FREE

Register Now

Already have an account? Login

Terms & Conditions Privacy Notice Change your Cookie Settings © 2025 Schneider Electric

This is a heading

With achievable small steps, users progress and continually feel satisfaction in task accomplishment.

Usetiful Onboarding Checklist remembers the progress of every user, allowing them to take bite-sized journeys and continue where they left.

of