A department can only be deleted from the system when no users are attached to it and the "Delete"
option is displayed.
1. To delete an existing Department, navigate to the Departments Tab.
2. Select "Delete" beside the Department Name that is to be deleted.
3. The system will confirm that "you are sure you want to delete this record?". Select "OK". The Department is deleted from the system and will not appear in the drop down list on the User Properties Tab.
To identify what users are assigned to a department, use the Advanced User Search tool box and
"Advanced Options" on the Users screen.
4.9 User Sync Function
The User Sync feature allows the a customer to manage their users on their existing domain controller but link these users to the hosted services that are available on a Service Provider's Control Panel. This is achieved setting up an interface between the customer's Domain Controller and the Hosted Domain Controller. The interface is a one way feed, where any user updates that are made on the Customer Domain Controller are fed through to the Hosted environment.
The users Active Directory accounts are duplicated within in the hosted domain and the services are configured to these replica user accounts.
When a user changes their passwords in their own Domain, the password change is updated in the hosted domain.
Sync'd users' active directory properties cannot be amended on the Control Panel, any user change must be completed in their existing domain controller. Adding an email address and/or a Cortex security role is allowed on a User Sync user.
Limitations:
There are some known limitations with the User Sync Tool:
· Cannot use the Copy User functionality for a synced user
· The Enable & Disable User functions on Cortex will not have any affect on the user's status in the customer's active directory. There is no data being passed back to the customer's environment.
· Changes to Group management, ie. moving users into a group, will not be passed to Cortex. An actual change needs to take place on the user's AD properties for the change to be passed through.
4.9.1 User Sync Download
The User Sync Tool must be downloaded onto the customer's Domain Controller.
Once the User Sync Service is provisioned to the customer, the customer's Service Administrator will be able to access the User Sync's installer from the User Sync Download page on the Control Panel. To access this screen, select the User Management icon and select "User Sync Download".
Downloading the User Sync Tool
1. Select the correct Windows version that is running on the Domain Controller (this is the Domain Controller on customer's server) and click on "Download".
2. Select "Run".
3. Select "Run".
4. Select Next.
5. Accept the terms and conditions of installing the Cortex User Sync tool.
6. Ensure that the Customer property is populated with your CustomerShortName. Enter the Password for the Administrator user. Select Next.
7. The Cortex Sync Tool now needs to be configured with what information should be passed from the Active Directory to the Control Panel. By default, password changes are always enabled.
Enable "Watch for changes to users" if user properties changes are to be submitted to and sync'd with the Control Panel.
The frequency of the Sync User actions can also be adjusted. The default value is 5 seconds. Select Next.
8. The wizard allows the Administrator to define which User Groups will be excluded/included by the User Sync Tool. To search for a Group, enter a Group Name and select "Find Now".
Results from the Search will be displayed in the "Groups Found" property. Click on the Group and select "Add" to for either Exclude users or Include users. Select Next.
9. The wizard will confirm the connection details for the Cortex Tool to connect to the hosting environment. Do not change these settings as it may stop the User Sync tool from working successfully.
Select Next, the wizard test the connectivity to the hosting environment using the specified parameters.
If no error message appears and the wizard navigates to the Destination Folder step, the connectivity to the hosted environment is working.
10.Enter the destination folder where the Cortex User Sync Tool will be installed. The default setting is C:
\Program Files\Cortex Sync\. Select Next.
11. Select Install to commence the installation. Once the installation is complete, select "Finish" to exist the Setup Wizard. To start the Cortex User Sync Tool, the Domain Controller needs to be re-started.
Once the Domain Controller is restarted, all users that are already saved in the Active Directory will appear in the Cortex Control Panel.
4.9.2 Change user's status from AD Sync to Hosting
An AD sync user's status can be updated so that it can become a hosting user, where there user account on the control panel is no longer sync'd with the remote domain controller and the user's details and password will managed in Cortex.
1. Select Edit User for the user that you want to disable AD sync on.
2. At the top of the User Details screen, the control panel confirms that the user is an AD sync'd user.
Click on "Disable AD Sync"
3. The control panel will verify that you want to remove AD sync from the user's account. Select OK if you want to proceed with the change. The control panel's page will refresh and remove the AD Sync User wording at the top of the iframe and the user's details are now editable.
4. Select Provision to update the user account. (This should be selected even if not changes were made to the user's properties).
5 OU Management
Cortex allows the management of a customer's organizational structure to be delegated to the customer's administrator. Two additional screens will be available to the administrator:
· Customers >> Organizational Structure
· Configuration >> User Groups
An organizational unit (OU) acts as a container for storing objects such as users and groups.
These screens allow the Customer to create its own organization units so that users, distribution group, contacts and resource mailboxes can be assigned to them. The Administrator is also able to assign specific user permissions to its defined organization units.
Example:
A customer has three OUs; Sales, Marketing and Support. A user security group is created which has User Administrator rights for the Sales and Marketing OUs. This user security group is assigned to User A.
User A can create and manage users in the Sales and Marketing OUs. The user can create and move users into the Support OU but cannot view or manage any further changes to these users as the user does not have access to complete user permissions for the Support OU.
The customer must be configured with the advanced customer property "Organizational Structure" set as
"User Specified" before the customer administrator can access the OU Management screens.
5.1 Organizational Structure
The Organizational Structure screen allows the end customer to manage its objects into different containers (OUs) according to their security and administrative requirements.