This guide will teach you how to synchronize users from an active directory to RocketChat Server. RocketChat is an open-source, self-hosted communication platform enabling professional teams to communicate and collaborate via text, audio, and video in real-time. It can be installed on your server or used as a cloud-based service.
You’re required to install the following programs.
- Domain Controller
- RocketChat Server
Review Active Directory
Active Directory integration with RocketChat allows users to authenticate against their Windows Active Directory credentials when logging in to RocketChat. The domain name for this guide is hg.local, and we have an Organizational unit named department, inside which there are two more folders (HR and IT). There are also some users (hr1,hr2, it1 and it2) created in it.
Configure Synchronization Process
Now configure synchronizing of users from the active directory to RocketChat Server. Access RocketChat through a web browser, and you would need to configure the LDAP authentication settings in the RocketChat web interface to connect to your Active Directory server.
Click on the three dots icon at the top to enter the “Administration” panel. Click on the Workspace option.
Click on the settings tab on the panel on the left side of the window and search for the “LDAP” in the RocketChat administration panel. Click the Open button.
Click the Connection tab and Enable the radio button to turn on the LDAP authentication. Enter the Active Directory as a server type, the Active Directory server’s IP in the host’s textbox, enter the port number and turn on the radio button for reconnect.
Now come to the Authentication and turn on the radio button to enable the authentication. Enter the LDAP credentials in the appropriate fields. Configure the LDAP search filter and base DN settings to match your Active Directory domain structure. Click on Save Changes to update settings.
Configure the LDAP user mapping settings to map Active Directory user attributes to RocketChat user attributes. This includes mapping the user’s Active Directory username to their RocketChat username and any other attributes you want to synchronize, such as their email address or display name. Now click on the Test Connection tab.
Click on the User Search tab and turn on the Find user after login radio button, then enter the Base DN into the relevant input field.
Next, click the Data Sync tab and enter your domain name into the Default Domain input field. Don’t forget to press the save changes button.
Test the LDAP configuration to ensure that users can authenticate against the Active Directory server and that their user accounts are being created in RocketChat.
Once the LDAP configuration is complete, RocketChat will synchronize user information from Active Directory regularly, creating user accounts in RocketChat for any new users added to Active Directory and updating existing user accounts with any changes to their attributes in Active Directory. Click on the Test LDAP Search tab and enter the User on the Domain controller, for example, “it1” we’ve created on the Active directory.
Now finally, click on the Sync Now button. Sign in with the newly synced user on the RocketChat server.
So the Active Directory integration with the RocketChat server provides a streamlined authentication and user management experience for organizations to manage their user accounts RocketChat server.