Importing Users from AD

Importing Users from AD

  • Check if PAM360 is installed in a member server or a workgroup machine. Member servers will by default have connectivity to AD and if it is a workgroup machine then there should be a connectivity available from workgroup machine to primary domain controller.
  • Check if the PAM360 service is running with a service account.
  • Check if the PAM360 server has connectivity to the domain controller.
  • Check if the DOMAIN field of the import page contains the correct NETBIOS name in upper case.
  • Check if the FQDN supplied in Primary DNS name field is correct and reachable from PAM360 server.
  • Check if the customers Active Directory has SSL mode enabled. If so, then copy the SSL certificate of the domain into PAM360/bin directory and run the importCert.bat command to import the .cer file. For example, importCert.bat MEAD.cer.
  • Request the customer to get the certificate of Domain to run the above command. 
  • Unless importing one or few users, always use the "Fetch Groups and OU's" button at the bottom to fetch the actual Groups/OU's from AD and select them for import.
  • If you see the message "Users not imported" with a few users listed under it in red color, then it is definitely a permission issue. So change the login account used in the import page with a different account(preferably a domain admin) and try the import again.
  • While trying to import a group, if you see the message "Group list is too big to display", then stop the PAM360 service, edit the file named system_properties.conf present in PAM360/conf directory and look for the line domain.group.limit=2500. Change the value 250000, save the file, start the service again and try the Fetch Groups and OUs button again. Similarly for OU's check for domain.ou.limit=2500 change the number based on the customers AD size. 

      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • Importing Users from LDAP

                      Generally LDAP option is used only if the customer has PAM360 installed on a Linux server. Check with the customer for the reason for installing PAM360 on a Linux server and inform them that they will have to install the Agents on ALL windows ...

                    • AD SSO troubleshooting steps

                      Steps to configure SSO for different browsers: Steps for IE, Chrome, Edge & Opera 1. Through 'Run' command, execute 'inetcpl.cpl'. Internet Properties will be displayed. 2. Select the 'Security' tab in the pop-up window. 3. Choose the option 'Local ...

                      Related Products