Topic
This article answers frequently asked questions about Active Directory (AD) user management in NinjaOne.
Environment
NinjaOne Platform
Questions
Select a question to review the answer:
- If a machine is moved in the AD to another location, can it be synced in NinjaOne automatically?
- What configuration within NinjaOne is required in order for my AD domain controller to be recognized as such in my console?
- Can I add a user to my AD domain controller from within the NinjaOne console?
- Can I delete a user from my AD domain controller from within the NinjaOne console?
- How can I track changes that have been made to my AD users from within the NinjaOne console?
- Who has access to Active Directory User Management?
- Does the History tab within Organizations → Devices → Discovery Jobs display a record of all the jobs that have run, or just those that have found devices?
Answers
If a machine is moved in the AD to another location, can it be synced in NinjaOne automatically?
Active Directory is automatically mapped in NinjaOne and does not require syncing.
What configuration within NinjaOne is required in order for my AD domain controller to be recognized as such in my console?
NinjaOne will automatically detect if a device is an AD domain controller (either primary or backup). No further configuration is required.
Can I add a user to my AD domain controller from within the NinjaOne console?
No, you must add users locally within the domain controller.
Can I delete a user from my AD domain controller from within the NinjaOne console?
You can "disable" users but not delete them.
How can I track changes that have been made to my AD users from within the NinjaOne console?
All Active Directory changes are logged in the Activity Feed. You can filter for Active Directory activities using the Type → Device → Active Directory filter.
Who has access to Active Directory User Management?
NinjaOne system administrators have access to Active Directory User Management by default. To grant access to a technician, you must open their account or user role and select "Allowed" for the System → Active Directory Management and Active Directory Discovery permissions.
Does the History tab within Organizations → Devices → Discovery Jobs display a record of all the jobs that have run, or just those that have found devices?
The Discovery Jobs → History tab displays jobs that found devices (both approved and rejected). However, the Activity Feed will indicate that a job was run, regardless of whether any devices were discovered or not.
Additional Resources
For more information about AD user management in NinjaOne, refer to Active Directory User Management.