Import and sync users from Active Directory
Hideez Integration – Import and sync users from AD
PreviousIntegration HES with Active DirectoryNextImport and sync users from Active Directory with domain password changing
Last updated
Hideez Integration – Import and sync users from AD
Last updated
Hideez Integrations – Import and sync users from AD
Hideez provides two ways to manage employees in Hideez Enterprise Server (HES):
Manual management: Add and manage employees manually in HES.
Integration with Active Directory (AD): Sync employees with a specific group in AD.
You can also integrate multiple domains, including Azure AD and on-premises AD.
Step 1: Configure Active Directory Settings
Ensure your Active Directory settings (AD On-premises, Azure AD) are correctly configured for integration with HES.
In Active Directory, create a group named Security Key Owners.
Add all employees to whom you will assign Hideez Keys to this group.
Step 3: Sync with Active Directory
In HES, click the Sync with AD button.
Confirm the action by selecting Sync Now.
Note: If you encounter the error "Unavailable Critical Extension" during sync or password update, please follow our troubleshooting guide to enable Enabling Virtual List View.
Step 4: Verify Imported Employees
Ensure that all employees from the Security Key Owners group appear in the HES employee list.
Note: If a manually added employee shares the same name as an imported one, the AD data will replace the manual entry.
Step 5: Automatic Synchronization
The employee list will synchronize every hour.
When a new user is added to the Security Key Owners group, they will appear in HES. Afterward, you can assign them a key and add the necessary accounts.
When a user is removed from the Security Key Owners group, their key will be deactivated in HES, but they will remain on the employee list. You need to recover the key from the employee, clear it via Hideez Client, and it will be marked as Ready for future use.
In a multi-domain environment, users from different domains are mapped based on their email addresses. If users from different domains share the same email address, they will be combined into one user profile on the HES server after synchronization.
Employees imported from AD will have a special icon next to their names and cannot be edited manually (no Edit button will be available).
