Keep Active Directory Up to Date with FACTS or Blackbaud
Userbus's Active Directory sync keeps Active Directory up to date with FACTS or
Blackbaud without opening firewall ports.
Our sync performs account lifecycle management in Active Directory,
automatically creating, updating, and deactivating and/or deleting accounts
(depending on your chosen settings). We pull fresh data from your student
information system (SIS) every day and update Active Directory to match.
Features
The sync's features include:
| Feature |
Description |
| Account Cleanup |
- Deactivate Active Directory accounts once corresponding users in your student information system are inactive
- Delete inactive accounts
- Delete home folders
- Perform these operations immediately, after time periods of your choice, or never
- Define conditions for which users should be included in and excluded from account cleanup
|
| Account Matching |
- Match student information system accounts to existing Active Directory accounts through account mappings, such as name, username, email address, and more
- Create and edit your own custom account matching mappings
- Optionally concatenate and take substrings of field values, such as "first letter of first name plus last name"
|
| Field Mapping |
- Use the comprehensive default field mappings to map student information system fields to Active Directory
- Default field mappings include names, email addresses, mailing addresses, and more
- Define your own field mappings
- Combine field values from your student information system with static values, such as "first letter of first name plus dot plus last name"
|
| Folders |
- Create folders for accounts
- Set accounts' home folder properties
- Set accounts' mapped drive letter properties
- Conditionally create folders. For example, create folders for staff in \\myserver\Staff and folders for students in \\myserver\Students
|
| Group Membership |
- Set group memberships
- Conditionally set memberships. For example, add students whose Current Grade is 12 to the Seniors group
- Remove existing group memberships besides the ones Sisdir sets
|
| Organizational Unit (OU) Placement |
- Place users in OU's
- Conditionally place users in OU's. For example, put students whose Current Grade is 12 into the Seniors OU
- Move existing users into the appropriate OU if they're in another one
|
| Passwords |
- Generate passwords from the following and combinations of the following:
- Static text
- Field values from your student information system
- Random values
- Set default password options, including:
- User must change password at next logon
- User cannot change password
- Password never expires
|
| Reporting |
- Send sync results to multiple email addresses
- Attach sync logs
- Attach a CSV file containing usernames and password changes
|
| Usernames |
- Map field(s) from your student information system to use as usernames in Active Directory
- Compose usernames from field values, disambiguation suffixes, and string constants, such as bob.johnson, bjohnson, johnsonb1, and more
- Transform field values through truncation, case changes, and nonalphanumeric character removal
|
| Miscellaneous |
- Run your own PowerShell scripts that before and/or after sync
- Create multiple syncs with different settings
- Exclude certain schools in your district from syncing
- Sync in "what-if" mode to view sync results without changing your directory or file system
- Use the scheduling assistant to easily set up recurring syncs in Task Scheduler
|
Sync Times
The sync can run:
- On demand at any time by logging in to Userbus's web portal and clicking
the Run button. Changes are reflected in Active Directory immediately.
- On a schedule that you can adjust in the web portal.