Introduction
The Cloud Extender is a component used for integrating both cloud and on-premise domains with external data sources such as:
Active Directory (AD) and LDAP integration for retrieving and continuously syncing Windows domain users, meta data and groups. This integration is critical for:
Using the existing AD-structure to effortlessly mirror a domain structure in the SDM domain.
Allow users of all roles to log in to SDM with their AD credentials.
Allow creation and distribution of user auth (AD) based certificates for enterprise-grade WiFi, VPN, et cetera.
Allow user management in AD only.
Allow automatic sync of OU/user/device data to Inventory/SLM data.
Exchange integration for retrieving basic information for Exchange synced devices, and:
Automatically create these devices in SDM and simplify manual enrollment of legacy devices.
Block/allow/wipe mail sync for connected devices
Public Key Infrastructure (PKI) integration (PKI/CA) for user and device certificates.
This document describes how to install and setup Cloud Extender and how to configure the integrations. It also describes how to create a service account which allows the service to connect to the Exchange server remotely.
Prerequisites
To be able to install and configure Cloud Extender you must have:
Active Directory service account (with user privilege)
Windows server 2012 R2 or a later
.NET Framework 4.7.2 or a later
Connection information to Active Directory server
Network access from Snow Cloud Extender server to Snow Device Manager SaaS:
TCP Port 443 (SSL) persistent connection
Cloud Extender MSI (installation package)
Snow Configuration file from the creation of the Cloud Extender service in the Domain Admin tool
It is possible to configure the Cloud Extender without the file, but then the connection must be manually configured
Note
Only one Cloud Extender can be installed per server since the server runs as a windows service. For other configurations, please contact your service representative.