Secure access – Acts as a virtual firewall around Active Directory, enabling you to control access through delegation using a least privilege model. Based on defined administrative policies and associated permissions generates and strictly enforces access rules, eliminating the errors and inconsistencies common with native approaches to AD management. Plus, robust and personalized approval procedures establish an IT process and oversight consistent with business requirements, with responsibility chains that complement the automated management of directory data.
Automate account creation – Automates a wide variety of tasks, including:
- Creating user and group accounts in AD
- Creating mailboxes in Exchange
- Populating groups
- Assigning resource in Windows
ActiveRoles Server also automates the process of reassigning and removing user access rights in AD and AD-joined systems (including user and group de-provisioning) to ensure an efficient and secure administrative process over the user and group lifetimes. When a user’s access needs to be changed or removed, updates are made automatically in AD, Exchange, SharePoint, OCS, Lync and Windows, as well as any AD-joined systems such as Unix, Linux and Mac OS X.
Day-to-day directory management – Simplifies management of:
- Exchange recipients, including mailbox/OCS assignment, creation, movement, deletion, permissions and distribution list management
- Computers, including shares, printers, local users and groups
- Active Directory, including AD LDS
ActiveRoles Server also includes intuitive interfaces for improving day-to-day administration and help desk operations via both an MMC snap-in and a Web interface.
Manage groups and users in a hosted environment – Works in tandem with Quest One Quick Connect in a hosted environment where accounts from client AD domain are synchronized with a host AD domain. ActiveRoles Server enables user and group account management from the client domain to the hosted domain, while also synchronizing attributes and passwords.
The solution uses out-of-the-box connectors to synchronize your on-premises AD accounts to cloud-based services such as Salesforce.com, Google Apps, Microsoft Office 365, Lync Online and SharePoint Online.
Consolidate management points through integration – Complements your existing technology and identity and access management strategy. Its Extend All feature simplifies and consolidates management points by ensuring easy integration with many Dell products, including Quest One Quick Connect, Quest One Identity Manager, Privilege Password Manager, Desktop Virtualization, Authentication Services, Defender, Password Manager, Webthority and ChangeAuditor. ActiveRoles Server also automates and extends the capabilities of PowerShell, ADSI, SPML and customizable Web interfaces.