Creating an alternative account discovery profile
Creating a profile allows you to specify a filter pattern for identifying the alternative accounts in Active Directory. After the profile is created, you can optionally delegate permissions to additional users and roles to manage the profile. See Assigning alternative accounts profile management permissions.
To create an alternative account discovery profile:
- Log in the Admin Portal.
- Click Discovery > Systems and Accounts > Profiles > Add Discovery Profile button.
- Provide the following information on the Settings page:
- Enter a Name for the profile.
- (Optional) Enter a profile description.
- Select Active Directory or Port Scan.
- For Active Directory:
- Select the domains for which you want to discover the alternative accounts.
(Optional) Select the Active Directory groups within your selected domains to discover the alternative accounts.
The alternative accounts found in a particular domain are filtered by the Active Directory groups that belong to the same domain.
We search for alternative accounts within the specified domain(s) and Active Directory Organization Units (OUs). We search all the forests that have a Centrify Connector installed (with Active Directory proxy enabled) for the owner accounts.
- For Port Scan:
- Fill in the IP Address, Subnet, and Range fields.
- Click Add to add new discovery accounts.
- For Active Directory:
- Click Save.
The Settings page opens.
We show the newly created profile with the Ready status in addition the following information on the Profiles page.
Field Name | Description |
Last Run | Date and time the profile was run. |
Elapsed Time | Time it took to run the profile. |
Status |
Profiles can have the following statuses:
|