OneLogin’s Active Directory Connector allows you to extend your directory into the cloud. It runs as a Windows service on your local area network and synchronizes users with OneLogin in real-time and allows users to sign into all their applications using their Windows credentials.
The connector is installed via a simple click-through process, which gets it up and running in seconds. At that point it establishes a secure, outbound connection to OneLogin, which means you don’t have to make any firewall changes for it to work. This not only gets you up and running faster, it also means you have one less firewall rule to worry about. The connector also runs as a Windows service so you don’t have to worry about manually stopping and starting it.
Real-Time User Synchronization
When the connector starts, it will automatically synchronize users in AD with OneLogin. Any subsequent changes to users in AD will be updated in OneLogin in real-time.
The outbound connection to OneLogin is also used to authenticate users from OneLogin’s login page. This can be combined with PKI certificates, IP address restrictions and two-factor authentication from VeriSign and Yubico. You can also use NTLM to automatically log users into OneLogin when they are logged onto their Windows network.
Map Users to Applications
Intuitive mapping rules can be used to automatically set a user’s applications based on the user’s AD location and group memberships.