How To Configure Mapping Of Ad And User Profiles Of SharePoint

Configuring the mapping of AD and user profiles in SharePoint is essential for seamless data integration in your workspace. By following these steps, you can efficiently configure the synchronization settings and map user profile properties.

To configure mapping of AD and user profiles in SharePoint, you can use the SharePoint Active Directory import option. This option allows for faster import operations compared to using Microsoft Identity Manager (MIM), but it only works with Active Directory Domain Services (AD DS) and does not support other directory services or external identity managers. There are several limitations to using the AD import option, such as not supporting bidirectional synchronization, not automatically synchronizing photos from AD to SharePoint, and not supporting custom object classes or complex property mappings.

To configure SharePoint Server to use AD Import, you need to go to the Central Administration website, navigate to the User Profile service application, and configure the synchronization settings to use SharePoint Active Directory Import. You then need to create a synchronization connection to AD DS, specifying the connection settings such as the domain name, authentication provider, and synchronization account credentials. Finally, you can map the user profile properties in SharePoint Server to the corresponding attributes in AD DS by going to the Manage User Properties page in the User Profile service application.

It’s important to note that if your organization uses the cloud identity model, where user accounts are stored in Azure AD, you can manage most user profile information in the Microsoft 365 admin center or the Azure AD admin center. Custom user profile properties in SharePoint are not synced back to Azure AD.

There is also a guide for configuring profile synchronization in SharePoint Server 2013, which involves multiple phases such as creating a web application for My Sites, creating a managed path for My Sites, creating a My Site Host site collection, creating a User Profile service application, and enabling NetBIOS domain names for user profile synchronization. These steps require gathering the necessary information, granting account permissions, and installing prerequisites like a full installation of SQL Server.

SharePoint Active Directory Import Option

The SharePoint Active Directory import option is a convenient way to configure the mapping of AD and user profiles in SharePoint, but it comes with certain limitations that you should be aware of. This method allows for faster import operations compared to using Microsoft Identity Manager (MIM). However, it is important to note that the AD import option only works with Active Directory Domain Services (AD DS) and does not support other directory services or external identity managers.

When using the SharePoint Active Directory import option, there are several limitations to consider. First, bidirectional synchronization is not supported, meaning changes made in SharePoint will not reflect back in AD. Additionally, photos from AD cannot be automatically synchronized to SharePoint, and custom object classes or complex property mappings are not supported. It is crucial to keep these limitations in mind when configuring the mapping of AD and user profiles in SharePoint.

SharePoint Active Directory Import Option

To configure SharePoint Server to use the AD Import option, follow these steps:

  1. Go to the Central Administration website.
  2. Navigate to the User Profile service application.
  3. Configure the synchronization settings to use SharePoint Active Directory Import.
  4. Create a synchronization connection to AD DS, specifying the required connection settings such as the domain name, authentication provider, and synchronization account credentials.
  5. Map the user profile properties in SharePoint Server to the corresponding attributes in AD DS by going to the Manage User Properties page in the User Profile service application.

If your organization uses the cloud identity model where user accounts are stored in Azure AD, it is important to note that most user profile information can be managed in the Microsoft 365 admin center or the Azure AD admin center. However, custom user profile properties in SharePoint are not synced back to Azure AD.

For organizations using SharePoint Server 2013, there is a separate guide for configuring profile synchronization. This involves creating a web application for My Sites, setting up a My Site Host site collection, creating a User Profile service application, and enabling NetBIOS domain names for user profile synchronization. It is essential to gather the necessary information, grant account permissions, and install prerequisites like a full installation of SQL Server to ensure a successful configuration.

Limitations of SharePoint Active Directory Import Option
Does not support bidirectional synchronization
Does not automatically synchronize photos from AD to SharePoint
Does not support custom object classes or complex property mappings

Configuring SharePoint Server for AD Import

To configure SharePoint Server for AD Import and ensure effective mapping of AD and user profiles, follow these steps to set up the synchronization connection and map the user profile properties:

  1. Access the Central Administration website to begin the configuration process.
  2. Navigate to the User Profile service application and access the synchronization settings.
  3. Configure the settings to use SharePoint Active Directory Import, ensuring a seamless integration.
  4. Create a synchronization connection to AD DS, providing the necessary connection settings such as the domain name, authentication provider, and synchronization account credentials.
  5. Proceed to the Manage User Properties page in the User Profile service application to map the user profile properties in SharePoint Server to their corresponding attributes in AD DS.

It’s important to note that if your organization uses the cloud identity model, where user accounts are stored in Azure AD, most user profile information can be managed in the Microsoft 365 admin center or the Azure AD admin center. However, custom user profile properties in SharePoint are not synced back to Azure AD.

Profile Synchronization in SharePoint Server 2013

In addition to configuring SharePoint Server for AD Import, there is a separate guide available for configuring profile synchronization in SharePoint Server 2013. The process involves multiple phases, each with its own set of requirements:

  1. Create a web application specifically designated for My Sites, ensuring a dedicated space for user profiles.
  2. Establish a managed path for My Sites to facilitate easy access and management.
  3. Create a My Site Host site collection to serve as the central hub for all user profiles.
  4. Create a User Profile service application, which will facilitate the synchronization process for user profiles.
  5. Enable NetBIOS domain names for user profile synchronization, ensuring seamless integration with AD DS.

It is important to gather all necessary information, grant the required account permissions, and ensure the installation of prerequisites like a full installation of SQL Server. Following these steps will enable successful configuration of profile synchronization in SharePoint Server 2013.

Phase Description
1 Create web application for My Sites
2 Create managed path for My Sites
3 Create My Site Host site collection
4 Create User Profile service application
5 Enable NetBIOS domain names for user profile synchronization

Profile Synchronization in SharePoint Server 2013

If you are using SharePoint Server 2013, here is a comprehensive guide on configuring profile synchronization to ensure seamless mapping of AD and user profiles, including the setup of My Sites and the User Profile service application.

Firstly, to enable profile synchronization, you need to create a web application dedicated to My Sites. This can be done by navigating to the Central Administration website, accessing the “Manage web applications” page, and clicking on “New.” Choose the appropriate settings for your organization and ensure that the web application is associated with a specific content database.

Next, create a managed path for My Sites by going to the Central Administration website and accessing the “Manage web applications” page. Select the web application dedicated to My Sites and click on “Managed Paths.” Add a new path and specify it as “personal” or any other suitable name.

Following this, create a My Site Host site collection by going to the Central Administration website, accessing the “Manage web applications” page, and selecting the web application dedicated to My Sites. Click on “Site Collections” and then “New” to create a new site collection. Choose “My Site Host” as the template and provide the necessary details for the site collection.

Now, create a User Profile service application by going to the Central Administration website, accessing the “Manage service applications” page, and clicking on “New.” Choose “User Profile Service Application” as the type and configure the necessary settings, including the My Site Host and application pool.

To ensure successful profile synchronization, it’s important to enable NetBIOS domain names. This can be done by going to the Central Administration website, accessing the “Manage service applications” page, and selecting the User Profile service application. Click on “Configure Synchronization Connections” and enable NetBIOS domain names by checking the corresponding box.

Before proceeding with profile synchronization, gather all the necessary information, such as account permissions and required software installations, including a full installation of SQL Server. Ensure that all prerequisites are met before starting the synchronization process.

By following these steps, you will be able to configure profile synchronization in SharePoint Server 2013 and ensure smooth mapping of AD and user profiles, providing an efficient and organized user experience within your SharePoint environment.

Meet the Author

Abdul Rahim has been working in Information Technology for over two decades. Learn how Abdul got his start as a Tech Blogger , and why he decided to start this Software blog. If you want to send Abdul a quick message, then visit his contact page here.