Active Directory Connection: Joint Operation of UCS and Microsoft Domains

Univention Corporate Server offers extensive functions for joint operation with Microsoft Active Directory domains. In the same way as the Microsoft Windows domain, UCS constructs a trust context in the form of a UCS domain, the objects of which, e.g., users, groups and computers, are saved in the OpenLDAP directory service.

The UCS component Active Directory Connector establishes a connection between UCS and Active Directory allowing synchronisation of directory service objects between Microsoft Active Directory and the OpenLDAP directory in UCS, permitting them to be run optionally in both environments.

UCS as part of an Active Directory domain

A UCS Primary Directory Node can join any existing Active Directory domain of the same name as a domain member. Active Directory remains the principal directory service and UCS is granted limited access to the object data in the AD domain. In this way, UCS offers the possibility of expanding an existing Active Directory domain with all the functions of UCS without making changes to the AD domain.