Thank you for choosing Centrify!
The following is a step-by-step guide designed to help walk you through an installation of the Centrify Connector. The Centrify Connector is a lightweight application that provides the following services:
- Active Directory/LDAP Proxy
- Application Gateway
- RADIUS Server
- Web Server (IWA)
- Windows Server 2008 R2 (64 bit) or newer with 8 GB of memory.
- Internet access (outbound port 443) to reach the Centrify Identity Services platform.
- A 'Baltimore Cyber Trust Root CA' certificate installed in the 'Local Machine Trusted Certificate' root authorities store.
- Microsoft .NET version 4.5 or later.
If you are referencing accounts in an Active Directory tree or forest, the Centrify Connector can be joined to any domain controller in the tree (it does not need to be the root). In addition, that domain controller must have two-way, transitive trust relationships with the other domain controllers.
Centrify recommends at least two Centrify Connectors on separate physical servers for high availability and redunancy. Centrify Connectors work active-active, load balance and are site aware.
Let's Get Started
1) Download the Centrify Connector package by logging into your Identity Services 'Admin Portal' navigating to 'Settings' -> 'Network' -> 'Centrify Connectors' -> 'Add Centrify Connector'.
2) Click on the ’64-bit’ link to download the installation package to the server you want to install the Cloud Connector on.
3) Install the Centrify Connector on the member server by double clicking on the executable file.
4) Click ‘Next’ to continue.
5) Review the Centrify End User Software License and Services Agreement, accept the terms of the agreement, then click ‘Next’ to continue.
6) To install the Centrify Connector comes with additional mobile tools. Based on your installation requirements, you can choose to install just the Centrify Connector or Centrify Connector and Centrify for Mobile Tools.
7) Click ‘Install’ to install the Centrify Connector on the server.
8) Click ‘Finish’ to complete installation of the Centrify Connector on the server.
9) A second installation wizard will appear to initiate the connection between active directory and your Centrify Identity Service tenant. Once the window does appear, click ‘Next’ to continue.
Note: The second installation wizard may take up to a few minutes to appear.
10) Provide your Centrify Identity Service administrator username and password. This is the default administrator password provided during activation to your Centrify Identity Service tenant. Click ‘Next’ to continue.
11) If you are installing the Centrify Connector on a web proxy server, add server configurations in this window. While available as an option, a web proxy server is not required for the Centrify Connector. Click ‘Next’ to continue.
12) The following step is optional and is required if you want Centrify to automatically keep users in the Centrify Admin Portal current with users in Active Directory.
If you are installing the Centrify Connector with an account that has 'Read' permissions to the Deleted Objects container, you can click 'Next' to continue. The Centrify Connector will inherit the permissions of the user installing the Centrify Connector during the installation.
If you are install the Centrify Connector with an account that does not have 'Read' permissions to the Deleted Objects container, proceed to step 12 below to provide an account that does have the permissions.
13) If you are installing the Centrify Connector with credentials that do not have read access to the Deleted Objects folder, and you want to take advantage of Centrify's auto provisioning feature, you can specify alternative credentials by clicking on 'Edit -> Specify alternate user credentials'. The Centrify Connector will inherit permissions of the credentials you specify in this menu or by the user installing the Centrify Connector on the server. If you specify alternative credentials, click 'OK' then 'Next' to continue.
14) The Centrify Connector will attempt to connect to your Centrify Identity Service tenant. When you see five successes, click ‘Next’ to continue.
15) Click ‘Finish’ to continue.
16) The Centrify Connector Configuration console will display upon completion of the installation. Verify the connection is successful within the ‘Status’ tab.
Note: You can install multiple connectors to architect high availability and redundancy in your environment. Repeat the installation steps to install additional Centrify Connectors in your environment for redundancy and high availability. Centrify Connectors work active/active, load balance authentication traffic and are sight aware.
17) The ‘Centrify Connector’ tab within the Centrify Connector Configuration console, gives you the ability to 'Start'/'Stop' the connection to your Identity Service tenant. You can also 'View Log' from the persistent outbound connection the Centrify Connector has established to your Identity Service tenant.
18) In Centrify, refresh the web-page and verify that the connection was successful. If you have multiple Centrify Connectors, you will see each instance of those connections listed in this menu.
We hope this installation guide was helpful. For all other questions on how Centrify can help you consolidate user identities and solve the #1 cause of all cyber attacks, please contact us at https://www.centrify.com/about-us/contact/
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.