Configure Active Directory Integration (ADI) - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Configure Active Directory Integration (ADI)\" \/>\n<meta property=\"og:description\" content=\"Browse the JumpCloud Help Center by category, search for a specific topic, or check out our featured articles.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2025-03-12T17:49:06+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"6 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"joyjaswinski, natecopt\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\",\"url\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\",\"name\":\"Configure Active Directory Integration (ADI) - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"datePublished\":\"2023-06-05T17:09:23+00:00\",\"dateModified\":\"2025-03-12T17:49:06+00:00\",\"description\":\"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"width\":726,\"height\":332},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Configure Active Directory Integration (ADI)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n","yoast_head_json":{"title":"Configure Active Directory Integration (ADI) - JumpCloud","description":"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","og_locale":"en_US","og_type":"article","og_title":"Configure Active Directory Integration (ADI)","og_description":"Browse the JumpCloud Help Center by category, search for a specific topic, or check out our featured articles.","og_url":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","og_site_name":"JumpCloud","article_modified_time":"2025-03-12T17:49:06+00:00","og_image":[{"url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"6 minutes","Written by":"joyjaswinski, natecopt"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","url":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","name":"Configure Active Directory Integration (ADI) - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","datePublished":"2023-06-05T17:09:23+00:00","dateModified":"2025-03-12T17:49:06+00:00","description":"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","width":726,"height":332},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Configure Active Directory Integration (ADI)"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/205"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078\/revisions"}],"predecessor-version":[{"id":122170,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078\/revisions\/122170"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=81078"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=81078"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=81078"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=81078"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

<\/p><\/div>

Important:<\/strong> \n\n
We STRONGLY<\/strong> recommend installing and using LDAPS for ADI<\/a>. \n
\n
Configuring and using LDAPS on the Domain Controller to which the JumpCloud ADI agents will connect secures any sensitive information that is exchanged between the JumpCloud agents and the Domain Controller and protects against malicious users<\/li>\n<\/ul>\n<\/li>\n\n\n\n
Create a separate JumpCloud admin account for this integration\n
\n
API tokens are specific to each JumpCloud Admin account. An integration admin account prevents the possibility of breaking the ADI connectivity to your JumpCloud organization when an Admin account is deleted<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n <\/div><\/div><\/div><\/div>\n\n\n\n
System Requirements<\/strong><\/h2>\n\n\n\n
\n
64-bit Windows Server (versions 2012, 2016, 2019, 2022)\n
\n
Server Core installation is also supported for Windows Server versions 2016, 2019, and 2022. You will need to include the \/msiexec<\/strong> parameter when running the agent installer<\/li>\n<\/ul>\n<\/li>\n\n\n\n
15MB disk space<\/li>\n\n\n\n
10MB RAM<\/li>\n<\/ul>\n\n\n\n
General<\/strong> Considerations<\/strong><\/h2>\n\n\n\n
These considerations apply to all or most of the use case scenarios and configurations.<\/p>\n\n\n\n
\n
When specifying a DN, you must use a semicolon (;), commas (,) are not supported.<\/li>\n\n\n\n
The user attributes that sync by default are:\n
\n
First Name<\/li>\n\n\n\n
Last Name<\/li>\n\n\n\n
Username<\/li>\n\n\n\n
Email<\/li>\n<\/ul>\n<\/li>\n\n\n\n
The import agent can be configured to sync additional attributes.<\/li>\n\n\n\n
Non-standard ASCII characters are not supported in the Root User DN<\/li>\n\n\n\n
When updating an existing agent installation, only minimal installation screens are shown<\/li>\n\n\n\n
Demoting a DC installation to a member server or promoting a member server installation to a DC installation aren\u2019t supported. The agent(s) must be uninstalled first and then installed on the other type of server<\/li>\n\n\n\n
The passwords for the service accounts used by the integration (e.g., jcimport and jcsync)should be rotated periodically for security reasons<\/li>\n\n\n\n
As of ADI sync agent version 4.x and import agent 2.x, the following changes were made:\n
\n
The default location for all agent related installation, configuration, and log files is C:\\Program Files\\JumpCloud\\AD Integration\\<\/li>\n\n\n\n
All references to AD Bridge changed to AD Import<\/li>\n\n\n\n
The ADI sync agent can be installed independently of the ADI import agent<\/li>\n\n\n\n
The jcimport username & password and the API key are stored in the registry instead of the ADI Import Agent configuration file. Both the password and API key are encrypted and the values in the registry are replaced with the encrypted value when the import agent starts<\/li>\n\n\n\n
The ADI sync agent connect key is encrypted and the value in the registry is replaced with the encrypted value when the agent starts<\/li>\n<\/ul>\n<\/li>\n\n\n\n
The JumpCloud ADI import and sync agent services use TLS for all communication. If no network connectivity exists to JumpCloud, ADI won\u2019t work properly<\/li>\n<\/ul>\n\n\n\n
ADI Configurations<\/strong><\/h2>\n\n\n\n
The table below provides an overview of the three (3) deployment configurations and main use cases. The sections that follow describe the capabilities, example use cases, benefits, workflow, and considerations for each configuration, as well as a link to the step-by-step guide. <\/p>\n\n\n\n
\n
\n \n\n \n \n \n \n \n \n \n

\n ADI Configuration <\/th>\n \n Use case <\/th>\n \n User and Group Authority <\/th>\n \n Password authority <\/th>\n \n Data sync direction <\/th>\n \n Server type(s) on which agent(s) can be installed <\/th>\n \n Install Import Agent <\/th>\n \n Install Sync Agent <\/th>\n <\/tr>\n

\n Manage users, groups and passwords in AD <\/td>\n \n Extend AD <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n
\n Manage users and passwords in either system, or both <\/td>\n \n Extend AD <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers, Member Servers <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n
\n <\/td>\n \n Minimize AD footprint <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n
\n <\/td>\n \n Migrate away from AD <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers, \nMember Servers (Sync agent only) <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n
\n Manage users, groups, and passwords in JumpCloud <\/td>\n \n Minimize AD footprint <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers, Member Servers <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n
\n <\/td>\n \n Migrate away from AD <\/td>\n \n <\/td>\n \n <\/td>\n \n <\/td>\n \n Domain Controllers, Member Servers <\/td>\n \n <\/td>\n \n <\/td>\n <\/tr>\n <\/table>\n<\/div><\/div>\n\n\n\n
Manage users, groups, and passwords in AD<\/a><\/strong><\/h3>\n\n\n\n
\n
\n \n\n \n \n \n

\n
\n
This deployment configuration supports organizations looking to extend AD to the cloud for additional functionality with minimal changes to their existing AD environment. <\/span><\/span><\/p>\n
Use Cases<\/strong><\/h4>\n
\n
\n
Provide access to Cloud resources while keeping <\/span>AD as the primary Identity Provider (the source of truth) for user data, passwords, and security groups <\/span><\/p>\n<\/li>\n
\n
Access to SaaS applications using industry standard protocols SAML 2.0 and OIDC for SSO, and SCIM for provisioning, syncing and deprovisioning. <\/span><\/p>\n<\/li>\n
\n
Access to Cloud RADIUS for Wifi and VPN<\/span><\/p>\n<\/li>\n
\n
LDAP based user auth with MFA for NAS drive mappings, networking gear, or logins to things such as kubernetes clusters.<\/span><\/p>\n<\/li>\n
\n
User provisioning, syncing, deprovisioning and access control to other Cloud Directories such as M365\/ Entra ID and Google Workspace in real-time<\/span><\/p>\n<\/li>\n
\n
Compliance - keep the password behind the AD firewall and still extend AD to cloud <\/span><\/p>\n<\/li>\n
\n
Cross-platform device management - Support Windows, Linux, Mac, iOS, and Android devices<\/span><\/p>\n<\/li>\n<\/ul>\n
Benefits<\/strong><\/h4>\n
\n
\n
Future Flexibility & Agility<\/span> <\/span><\/p>\n
\n
\n
Once a user identity is in the Cloud, it can be extended more easily.  <\/span><\/p>\n<\/li>\n
\n
Option to take advantage of all capabilities available in JumpCloud’s Open Directory Platform with minimal effort, no need to find another point solution.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/li>\n
\n
Automated Offboarding<\/span> <\/span><\/p>\n
\n
\n
Deactivating a user in AD will automatically suspend that user in JumpCloud within 60 seconds,resulting in a forced logoff on the user’s computer and the removal of access to the JumpCloud managed resources assigned to them, such as, SSO, RADIUS, LDAP, Password Manager, etc.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/li>\n
\n
User Device Choice<\/span> <\/span><\/p>\n
\n
\n
Let users pick between Windows, Mac or Linux, while still being able to enforce policies, push software, control OS patching, take remote control, and enforce MFA on that device.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/div> <\/td>\n
\n
\n
Workflow Details<\/span><\/p>\n
<\/strong><\/p>\n
<\/span><\/span> Data syncs one-way from AD to JumpCloud<\/span><\/p>\n
<\/span><\/span> Passwords managed solely in AD<\/span><\/p>\n
<\/span><\/span> Users created, updated, and deactivated solely in AD<\/span><\/p>\n
<\/span><\/span> Security groups created and managed solely in AD<\/span><\/p>\n
<\/span><\/span> Group membership managed solely in AD<\/span><\/p>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
Configuration<\/span><\/strong><\/p>\n
<\/p>\n
Read <\/span>Configure ADI: Manage users, groups, and passwords in AD<\/span><\/a> for step-by-step instructions<\/span><\/p>\n
<\/strong><\/p>\n
<\/span><\/span> Use ADI import agent only<\/span><\/p>\n
<\/span><\/span>Install import agent on two or more member serviers or all<\/em> domain controllers (DCs)<\/span><\/p>\n
<\/span><\/span>Add users and security groups under the ADI security group in AD<\/span><\/p>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
<\/span><\/span>Important Considerations:<\/span><\/span><\/p>\n
\n
Import agents can be installed on member servers or DCs.<\/span><\/li>\n
Delegated log in authentication to AD will be used when import agents are installed on member servers.<\/span><\/li>\n
Syncing the password from AD to JumpCloud requires the import agent to be installed on <\/span>all<\/span> DCs. <\/span>Scheduled downtime is also required. Each server must be rebooted to complete the import agent installation.<\/span><\/li>\n
When multiple AD import agents are installed, one is designated as the primary agent by the ADI service for all actions (directives) performed by the import agent. <\/span><\/span><\/li>\n
API tokens are specific to each Admin account. Create a separate account for this integration to prevent the possibility of breaking the ADI connectivity to your JumpCloud organization when an Admin account is deleted.<\/span><\/li>\n
Password complexity requirements in AD and JumpCloud should be the same or closely aligned to avoid passwords being rejected and failing to sync due to not meeting the complexity requirements.<\/span><\/li>\n
Importing<\/span> privileged user accounts<\/span><\/a>, such as Domain Admins, into JumpCloud from AD isn’t supported.<\/span><\/li>\n
We <\/span>STRONGLY<\/span> recommend installing and using<\/span> LDAPS for the ADI<\/span><\/a>. Configuring and using LDAPS on the Domain Controller that the Jumpcloud ADI agents will connect to secures any sensitive information that is exchanged between the Jumpcloud agents and the Domain Controller and protects against malicious users.<\/span><\/li>\n
Connect Keys are one-time use keys required for installing the import agent on a new AD server. Warning<\/strong>: Connect keys are only<\/strong> valid for 7 days<\/strong> if not used.<\/span><\/span><\/span><\/li>\n<\/ul>\n<\/div> <\/td>\n <\/tr>\n <\/table>\n<\/div><\/div>\n\n\n\n
AD Import only – single domain workflow<\/strong><\/h4>\n\n\n\n $\"\"$ <\/figure>\n\n\n\n
AD Import only – multiple domain workflow<\/strong><\/h4>\n\n\n\n $\"\"$ <\/figure>\n\n\n\n
Manage users and passwords in AD, JumpCloud, or both<\/a><\/strong><\/h3>\n\n\n\n
\n
\n \n\n \n \n \n

\n
\n
This deployment configuration supports organizations looking to minimize the number of resources managed by AD and organizations that want to eventually migrate away from AD. <\/span>This configuration provides the greatest flexibility. Users, passwords, and groups can be managed in AD, JumpCloud, or both.<\/span><\/p>\n
<\/span><\/p>\n
Use cases<\/strong><\/h4>\n
\n
\n
Allow users to change passwords in JumpCloud, from a JumpCloud managed device, and from AD.<\/span><\/p>\n<\/li>\n
\n
Enable JumpCloud and AD to share responsibility over the user identities.<\/span><\/p>\n<\/li>\n
\n
Add support for a mixed OS fleet and non-AD bound devices<\/span><\/p>\n<\/li>\n
\n
Extend user access to the Cloud for one or more of the following:<\/span><\/p>\n<\/li>\n
\n
\n
Access to SaaS applications using industry standard protocols SAML 2.0, and OIDC, for SSO, and SCIM for provisioning, syncing and deprovisioning. <\/span><\/p>\n<\/li>\n
\n
Access to Cloud RADIUS for Wifi and VPN<\/span><\/p>\n<\/li>\n
\n
LDAP based user auth for NAS drive mappings, networking gear, or logins to things such as kubernetes clusters.<\/span><\/p>\n<\/li>\n
\n
User provisioning, syncing, deprovisioning and access control to other Cloud Directories such as M365\/ EntraID \/ AzureAD and Google Workspace in real-time<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Maintain an AD footprint but only for mission critical Windows servers, such as:<\/span><\/p>\n<\/li>\n
\n
\n
Business critical applications that must stay on-prem.<\/span><\/p>\n<\/li>\n
\n
File and printer servers that cannot go away.<\/span><\/p>\n<\/li>\n
\n
Domain Controllers, but likely fewer DC’s in fewer locations.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Manage profiles in one system and passwords in the other<\/span><\/p>\n<\/li>\n
\n
\n
Manage passwords in JumpCloud to control credentials for Cloud resources and manage user profiles in AD to propagate the same information across all Microsoft solutions<\/span><\/p>\n<\/li>\n
\n
Manage passwords in AD for compliance purposes and manage profiles in JumpCloud to propagate to SaaS apps and other Cloud resources<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Import users from Cloud solutions that are not compatible with AD, such as an HRIS system<\/span><\/p>\n<\/li>\n
\n
\n
Import users into JumpCloud and then sync those users from JumpCloud into AD.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Migrate away from AD completely<\/span><\/p>\n<\/li>\n<\/ul>\n
<\/p>\n
Benefits<\/strong><\/h4>\n
\n
\n
Future Flexibility & Agility<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
Once a user identity is in the Cloud, it can be extended more easily.  <\/span><\/p>\n<\/li>\n
\n
Option to take advantage of all capabilities available in JumpCloud’s Open Directory Platform with minimal effort, no need to find another point solution.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Automated Offboarding<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
Deactivating a user in AD will automatically suspended that user in JumpCloud within 60 seconds,resulting in a forced logoff on the user’s computer and the removal of access to the JumpCloud managed resources assigned to them, such as, SSO, RADIUS, LDAP, Password Manager, etc.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Easy deployment of non-Windows devices to users<\/span>. <\/span><\/p>\n<\/li>\n
\n
\n
Let users pick between Windows, Mac or Linux, while still being able to enforce policies, push software, control OS patching, take remote control, and enforce MFA on that device.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Simplified end-user computer management<\/span><\/p>\n<\/li>\n
\n
\n
Remove the need for AD Domain Controller connectivity for all end-user computers <\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Users managed in the Cloud<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
You can create, suspend, manage users, passwords, and security group membership for JumpCloud. This saves you time by spent RDP’d into the DC’s and in the Active Directory Users and Computers (ADUC) interface.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/ul>\n
<\/p>\n<\/div> <\/td>\n
\n
\n
Workflow Details<\/span><\/p>\n
Data syncs bidirectionally between JumpCloud and AD<\/span><\/p>\n
<\/p>\n
Passwords managed in either system or both<\/span><\/p>\n
<\/p>\n
<\/span><\/span> Users created, updated, and deactivated in either system or both<\/span><\/p>\n
<\/p>\n
<\/span><\/span> User (security) groups created and managed in either system or both<\/span><\/p>\n
<\/p>\n
Group membership managed in either system or both<\/span><\/p>\n
<\/p>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
Configuration<\/span><\/p>\n
Read <\/span>Configure ADI: Manage users, groups and passwords in AD, JumpCloud, or both<\/span><\/a> for step-by-step instructions<\/span><\/p>\n
<\/strong><\/p>\n
<\/span><\/span><\/span><\/span><\/span>Use both the ADI import agent and ADI sync agent.<\/span><\/p>\n
<\/p>\n
<\/span><\/span><\/span><\/span> Install agents on either domain controllers (DCs) or member servers.  <\/span><\/p>\n
<\/span><\/span>Important<\/span>: To sync passwords from AD to JumpCloud the import agent must be installed on <\/span>all<\/span> DCs.<\/span><\/p>\n
<\/strong><\/p>\n
<\/span><\/span>  <\/span><\/p>\n
\n
\n
Add users and security groups under the ADI security group in AD to sync from AD to JumpCloud<\/span><\/p>\n<\/li>\n
\n
Assign users and user groups to the AD instance in JumpCloud to sync from JumpCloud to AD.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
<\/span><\/span>Important Considerations:<\/span><\/strong><\/p>\n
\n
When multiple AD import and sync agents are installed, one of each is designated as the primary by the ADI service for all actions (directives) performed by each agent. <\/span><\/span><\/li>\n
API tokens are specific to each Admin account. Create a separate account for this integration to prevent the possibility of breaking the ADI connectivity to your JumpCloud organization when an Admin account is deleted.<\/span><\/li>\n
If passwords need to be synced from AD to JumpCloud, an import agent must be installed on <\/span>all<\/span> Domain Controllers and downtime will need to be scheduled, because the installation requires a server reboot.<\/span><\/li>\n
If passwords are being managed in JumpCloud or authentication is being delegated to AD, the import agent can be installed on a member server(s).<\/span><\/li>\n
Password complexity requirements in AD and JumpCloud should be as closely aligned as possible to avoid passwords being rejected and failing to sync due to not meeting the complexity requirements.<\/span><\/li>\n
Importing<\/span> privileged user accounts<\/span><\/a>, such as Domain Admins, into JumpCloud from AD or managing them in AD from JumpCloud isn’t supported.<\/span><\/li>\n
The AD sync agent does not need to be installed on all servers.<\/span><\/li>\n
Connect Keys are one-time use keys required for installing an agent on a new AD server. <\/span>Warning: <\/strong> Connect keys are only valid for 7 days.<\/span><\/li>\n
We <\/span>STRONGLY<\/span> recommend installing and using LDAPS for the ADI. Configuring and using LDAPS on the Domain Controller that the Jumpcloud ADI agents will connect to secures any sensitive information that is exchanged between the Jumpcloud agents and the Domain Controller and protects against malicious users.<\/span><\/li>\n
<\/li>\n<\/ul>\n<\/div> <\/td>\n <\/tr>\n <\/table>\n<\/div><\/div>\n\n\n\nTwo-way Sync \u2013 Single Domain Workflow<\/strong><\/h4>\n\n\n\n $\"\"$ <\/figure>\n\n\n\n
Two-way Sync \u2013 Multiple Domain Workflow<\/strong><\/p>\n\n\n\n
$\"\"$ <\/figure>\n\n\n\nManage user, groups, passwords in JumpCloud<\/a><\/strong><\/h3>\n\n\n\n
\n
\n \n\n \n \n \n

\n
\n
This configuration supports organizations looking to migrate away from AD completely and organizations that have already significantly reduced the resources being manged by AD. <\/span><\/p>\n
<\/p>\n
Use Cases<\/strong><\/h4>\n
\n
\n
Use JumpCloud as the Primary Identity Provider (the source of truth) for user identities and groups and provide access to Cloud resources.<\/span><\/p>\n<\/li>\n
\n
You only want users to change passwords from the JumpCloud User Portal or JumpCloud managed devices <\/span><\/p>\n<\/li>\n
\n
Extend user access to the Cloud for one or more of the following:<\/span><\/p>\n<\/li>\n
\n
\n
Access to SaaS applications using industry standard protocols SAML 2.0, and OIDC, for SSO, and SCIM for provisioning, syncing and deprovisioning. <\/span><\/p>\n<\/li>\n
\n
Access to Cloud RADIUS for Wifi and VPN<\/span><\/p>\n<\/li>\n
\n
LDAP based user auth for NAS drive mappings, networking gear, or logins to things such as kubernetes clusters.<\/span><\/p>\n<\/li>\n
\n
User provisioning, syncing, deprovisioning and access control to other Cloud Directories such as M365\/ EntraID \/ AzureAD and Google Workspace in real-time<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Add support for non-Windows devices: Linux, Mac, iOS, and Android<\/span><\/p>\n<\/li>\n
\n
Maintain an AD footprint but only for mission critical Windows servers, such as:<\/span><\/p>\n<\/li>\n
\n
\n
Business critical applications that must stay on-prem.<\/span><\/p>\n<\/li>\n
\n
File and printer servers that cannot go away.<\/span><\/p>\n<\/li>\n
\n
Domain Controllers, but likely fewer DC’s in fewer locations.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Import users from Cloud solutions that are not compatible with AD, such as an HRIS system<\/span><\/p>\n<\/li>\n
\n
\n
Import users into JumpCloud and then sync those users from JumpCloud into AD.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
You want to reduce the role of AD in your environment OR you are in the final phase of your migration away from AD.<\/span><\/p>\n<\/li>\n<\/ul>\n
Benefits<\/strong><\/h4>\n
\n
\n
Future Flexibility & Agility<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
Once a user identity is in the Cloud, it can be extended more easily.  <\/span><\/p>\n<\/li>\n
\n
Option to take advantage of all capabilities available in JumpCloud’s Open Directory Platform with minimal effort, no need to find another point solution.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Automated Offboarding<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
Deactivating a user in JumpCloud will automatically suspend that user in AD within 5 seconds,resulting in a forced logoff on the user’s computer, the removal of access to the JumpCloud managed resources assigned to them, such as, SSO, RADIUS, LDAP, Password Manager, etc., and removal of access to AD managed resources.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Easy deployment of non-Windows devices to users<\/span>. <\/span><\/p>\n<\/li>\n
\n
\n
Let users pick between Windows, Mac or Linux, while still being able to enforce policies, push software, control OS patching, take remote control, and enforce MFA on that device.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Simplified end-user computer management<\/span><\/p>\n<\/li>\n
\n
\n
Remove the need for AD Domain Controller connectivity for all end-user computers <\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Users managed in the Cloud<\/span> <\/span><\/p>\n<\/li>\n
\n
\n
Create, suspend, manage users, passwords, and security group membership in JumpCloud. This saves you time by spent RDP’d into the DC’s and in the Active Directory Users and Computers (ADUC) interface.<\/span><\/p>\n<\/li>\n<\/ul>\n
\n
Migration path<\/span><\/p>\n<\/li>\n<\/ul>\n<\/div> <\/td>\n
\n
\n
Workflow Details<\/span><\/strong><\/p>\n
<\/p>\n
<\/span><\/span> Data syncs one-way from JumpCloud to AD<\/span><\/p>\n
<\/p>\n
<\/span><\/span> Passwords managed solely in JumpCloud<\/span><\/p>\n
<\/p>\n
<\/span><\/span> Users created, updated, and deactivated solely in JumpCloud<\/span><\/p>\n
<\/p>\n
<\/span><\/span> User (security) groups created and managed solely in JumpCloud<\/span><\/p>\n
<\/p>\n
<\/span><\/span> Group membership managed solely in JumpCloud<\/span><\/p>\n
<\/p>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
Configuration<\/span><\/p>\n
<\/p>\n
Read <\/span>Configure ADI:Manage users, groups, and passwords in JumpCloud<\/span><\/a> for step-by-step instructions.<\/span><\/strong><\/p>\n
<\/p>\n
<\/span><\/span><\/span> <\/span>Use ADI sync agent only<\/span><\/p>\n
<\/p>\n
<\/span><\/span><\/span><\/span> Install agents on either domain controllers (DCs) or member servers.  <\/span><\/p>\n
<\/p>\n
<\/span><\/span> Assign users and user groups to the ADI instance in JumpCloud<\/span><\/p>\n
<\/p>\n<\/div> <\/td>\n <\/tr>\n
\n
\n
<\/span><\/span>Important Considerations:<\/span><\/p>\n
\n
The AD sync agent does not need to be installed on all servers.<\/span><\/li>\n
When multiple AD sync agents are installed, one is designated as the primary agent by the ADI service for all actions (directives) performed by the sync agent. <\/span><\/span><\/li>\n
Password complexity requirements in AD and JumpCloud should be as closely aligned as possible to avoid passwords being rejected and failing to sync due to not meeting the complexity requirements.<\/span><\/li>\n
Managing <\/span> <\/span>privileged user accounts<\/span><\/a>, such as Domain Admins, in AD from JumpCloud isn’t supported.<\/span><\/li>\n
Connect Keys are one-time use keys required for installing the sync agent on a new AD server. Warning: <\/strong> Connect keys are only valid for 7 days.<\/span><\/li>\n
Groups sync automatically from JumpCloud to AD when one or more sync agents are installed. This sync cannot be disabled.<\/span><\/li>\n
We <\/span>STRONGLY<\/span> recommend installing and using<\/span> LDAPS for the ADI<\/span><\/a>. Configuring and using LDAPS on the Domain Controller that the Jumpcloud ADI agents will connect to secures any sensitive information that is exchanged between the Jumpcloud agents and the Domain Controller and protects against malicious users.<\/span><\/li>\n<\/ul>\n
<\/p>\n<\/div> <\/td>\n <\/tr>\n <\/table>\n<\/div><\/div>\n\n\n\n
JumpCloud Sync Only \u2013 Single Domain Workflow<\/strong><\/p>\n\n\n\n
$\"\"$ <\/figure>\n\n\n\n
JumpCloud Sync Only \u2013 Multiple Domain Workflow<\/strong><\/p>\n\n\n\n
$\"\"$ <\/figure>\n\n\n\nMigrate Windows Devices from AD-member to JumpCloud-managed<\/strong><\/h2>\n\n\n\nIf your company is looking to migrate off<\/em> of your AD domain to JumpCloud or move device management to JumpCloud, we recommend leveraging our Active Directory Migration Utility<\/a> (ADMU) to migrate Windows devices from AD-bound to JumpCloud-managed.<\/p>\n\n\n\n
Important Considerations<\/strong><\/h4>\n\n\n\n
\n
Utilizing the ADMU does not require the ADI:\n
\n
If you\u2019re looking to migrate user identities off of AD and into JumpCloud, and your company is going to migrate off of AD in phases, we recommend to implementing both JumpCloud\u2019s ADI<\/strong> and<\/em> ADMU<\/strong><\/li>\n<\/ul>\n<\/li>\n\n\n\n
You can run ADMU locally on the device or remotely using JumpCloud Commands<\/li>\n<\/ul>\n\n\n\nConfiguration<\/strong><\/h4>\n\n\n\nSee GitHub Wiki Page: JumpCloud ADMU<\/a> for step-by-step instructions.<\/p>\n\n\n\n
Use Cases<\/strong><\/h4>\n\n\n\n
\n
You want to convert AD-member Windows devices to JumpCloud-managed<\/li>\n\n\n\n
You are ultimately looking to migrate entirely off of AD<\/li>\n\n\n\n
You want JumpCloud to become the Primary IdP for all user identities<\/li>\n<\/ul>\n\n\n\n
Workflow Details<\/strong><\/h4>\n\n\n\n\n
User Identities can be imported in any of the following methods: Microsoft365, Google Workspace, JumpCloud ADI, CSV Import, or Manually created.<\/li>\n\n\n\n
ADMU tool is run on the AD-member Windows Device, which will convert it from an AD-member device to a local WORKGROUP device, as well as convert an AD User Account to a Local User Account.<\/li>\n\n\n\n
The ADMU tool can automatically bind a JumpCloud user to the converted user mentioned in the previous step.<\/li>\n<\/ol>\n\n\n\n
Benefits<\/strong><\/h4>\n\n\n\n\n
Automation of device migration<\/li>\n<\/ul>\n\n\n\n
Ready to Configure?<\/strong><\/h2>\n\n\n\n
Check out the step-by-step configuration guide that aligns with chosen deployment configuration:<\/p>\n\n\n\n
\n
Configure ADI: Manage users, security groups, and passwords in AD<\/a><\/li>\n\n\n\n
Configure ADI: Manage users, groups and passwords in either, or both, AD and JumpCloud<\/a><\/li>\n\n\n\n
Configure ADI: Manage users, groups, and passwords in JumpCloud<\/a> <\/li>\n<\/ul>\n\n\n\n
Want additional assistance from JumpCloud? <\/strong><\/h3>\n\n\n\nJumpCloud now offers myriad professional services offerings to assist customers with implementing and configuring JumpCloud. If you\u2019re looking for assistance with Migrating from AD, or to integrate AD with JumpCloud, we recommend you reach out to JumpCloud\u2019s Professional Services team on the following page: Professional Services – JumpCloud<\/a>.<\/p>\n\n\n\n
Need to troubleshoot?<\/h3>\n\n\n\n
If you\u2019re having issues with getting JumpCloud\u2019s ADI working, try Troubleshoot: ADI<\/a>.<\/p>\n\n\n\n
Want more information?<\/strong><\/h3>\n\n\n\n\n
[web page] Modernize Active Directory<\/a><\/li>\n\n\n\n
[eBook] Breaking Up with Active Directory<\/a><\/li>\n\n\n\n
[eBook] Modernize Active Directory: Break Free from the Limitations of AD<\/a><\/li>\n\n\n\n
[eBook] How to Modernize Your AD Instance: The IT Professional\u2019s Roadmap to Augmenting or Replacing AD<\/a><\/li>\n\n\n\n
[blog] Modernizing AD is Possible<\/a><\/li>\n\n\n\n
Modernize Active Directory: Everything you need to know in less than 3 minutes<\/a><\/li>\n\n\n\n
[webinar] How To Modernize AD: An Admin\u2019s Journey to IT Flexibility<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"
JumpCloud\u2019s Active Directory Integration (ADI) is JumpCloud\u2019s user identity and access management directory integration that enables the syncing of users, […]<\/p>\n","protected":false},"author":205,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2904,2855,2954],"support_tag":[],"coauthors":[2839,2841],"acf":[],"yoast_head":"\nConfigure Active Directory Integration (ADI) - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Configure Active Directory Integration (ADI)\" \/>\n<meta property=\"og:description\" content=\"Browse the JumpCloud Help Center by category, search for a specific topic, or check out our featured articles.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2025-03-12T17:49:06+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"6 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"joyjaswinski, natecopt\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\",\"url\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\",\"name\":\"Configure Active Directory Integration (ADI) - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"datePublished\":\"2023-06-05T17:09:23+00:00\",\"dateModified\":\"2025-03-12T17:49:06+00:00\",\"description\":\"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg\",\"width\":726,\"height\":332},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Configure Active Directory Integration (ADI)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n","yoast_head_json":{"title":"Configure Active Directory Integration (ADI) - JumpCloud","description":"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","og_locale":"en_US","og_type":"article","og_title":"Configure Active Directory Integration (ADI)","og_description":"Browse the JumpCloud Help Center by category, search for a specific topic, or check out our featured articles.","og_url":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","og_site_name":"JumpCloud","article_modified_time":"2025-03-12T17:49:06+00:00","og_image":[{"url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"6 minutes","Written by":"joyjaswinski, natecopt"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","url":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration","name":"Configure Active Directory Integration (ADI) - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","datePublished":"2023-06-05T17:09:23+00:00","dateModified":"2025-03-12T17:49:06+00:00","description":"Learn about the different use cases and configurations available with JumpCloud's Active Directory Integration.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/06\/AD-Import-single-domain-workflow.jpg","width":726,"height":332},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/configure-the-active-directory-integration#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Configure Active Directory Integration (ADI)"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/205"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078\/revisions"}],"predecessor-version":[{"id":122170,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/81078\/revisions\/122170"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=81078"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=81078"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=81078"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=81078"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}