Adding an IDex directory

Procedure

  1. On the SERVICES menu, under the Authentication submenu, click Directories.
  2. Click Add new directory and if you have a multitenant setup, from the Tenants list, select the tenants to use this directory service. If you are using an IDex Agent with this IDex Directory, you must make sure that the IP address of the domain controllers involved are assigned to the correct tenant on the Tenants page. If you don't have a multitenant setup, you won't see this option.
  3. From the Type list, select the "IDex Directory" option and either accept the default "IDex Directory" Name or type your own.
  4. You can either accept the "Default" IDex Directory DB Key or to type your own, click Advanced options » and type a unique Database Key for the IDex Directory. In most cases, you can accept the "Default" IDex Directory DB Key but if you have a multitenant setup where some data sets need to be partitioned from others, type your own. The Database Key value should be an alphanumeric value and must not include spaces.
  5. Enter a descriptive Comment and click Add.

Note: Changes applied to the IDex Directory or Database Key will result in a loss of group mapping. To resolve this issue, the Smoothwall Filter and Firewall synchronizes group mappings after a 24-hours automatically. Alternatively, you can synchronize your group mapping by running SendADDataNow.exe manually.

Follow-up tasks

  1. Create your Smoothwall Filter and Firewall authentication user groups, see our help topic, Adding user groups.
  2. Install either the IDex Agent or Client:
    • Install the IDex Agent on every domain controller, see our knowledge base articles, Installing the IDex Agent on Your Server.
      • After you've installed the agent, either return after 3 am or perform a manual synchronization of group mapping by running the file created during installation: C:\Program Files\Smoothwall\IDexAgent\SendAdDataNow.exe.
    • Install the IDex client on the macOS or Windows-based devices, see our knowledge base article, Installing the IDex Client on Your Managed Devices.
      • After you've installed the client, you need to sign in on your devices as the users that you want to filter so that the Smoothwall can pick up the user groups for those users.
  3. Map your active directory user groups to the local Smoothwall Filter and Firewall user groups that you created, see our help topic, Mapping directory groups to local Smoothwall Filter and Firewall groups.
  4. If you have a parent child configuration with several Smoothwalls, create a Smoothwall Firewall access rule, see our help topic, Adding new Smoothwall Firewall rules.
  5. Create a core authentication policy, see our help topic, Creating authentication policies.