Implement Blackberry Unified Endpoint Manager (UEM) Cloud Part 3 – Configure AD sync with Blackberry Connectivity Node

In part 3 of this series, we will continue with configuring company’s directory sync with Blackberry UEM cloud.

Just to reiterate, the Blackberry Cloud Connector within the Blackberry Connectivity Node provides the following function (taken from Architecture and Data Flows Reference Guide

uemcloudbcn1

For your reference, here’s the link I follow beginning with step 13. I will show you the steps related to Microsoft Active Directory.

Before proceeding further, be sure to choose a directory account with read permissions that the BlackBerry Cloud Connector can use to access the company directory.

On the Blackberry Connectivity Node, navigate to http://localhost:8088. For some reason, however, I’m not able to access this link remotely. Instead, I receive the error below.

uemcloud75.jpg

Under Directory type, click on the drop-down arrow and select Microsoft Active Directory. Then click Configure

uemcloud60.jpguemcloud61.jpg

Fill in the info as shown. In most cases, you can leave the others as the default values. Then click Save.

uemcloud62.jpg

If you receive the prompt below, re-check the information you entered and try again. It could be incorrect user credential or domain.

uemcloud63.jpg

Otherwise, you should see the green check marks under the applicable field(s).

uemcloud64.jpg

To confirm the connection is successful, log onto your Blackberry Cloud tenant. Then, browse to Settings -> External integration -> Company directory. You should see your instance of Blackberry Connectivity Node there.

uemcloud65.jpg

You may notice that the instance name is the same as the friendly name you entered previously during initial configuration. This is by design and will always reflect the friendly name of the first connectivity node you set up. If you have more two or more connectivity nodes and the first connectivity node becomes offline for whatever reason (i.e. scheduled maintenance, site outage, etc.), this instance name will still remain the same. Rest assure Blackberry NOC will connect to another connectivity node within your organization and continue to perform the company directory sync. Once connectivity is restored with the first node, UEM cloud will resume syncing against the first node.

What good is this connection setup without knowing that it does work? To find out, let’s first create a group or two in Microsoft Active Directory that we wish to sync with Blackberry UEM cloud. Then, follow the steps outlined in this link. For clarification, I will share the steps in detail below.

First, go to Settings -> External integration -> Company directory. Then, click on your company directory under Directory connection.

uemcloud76.jpg

The remaining choices really depend on your need. At the very least, I recommend checking off Enable onboarding under Sync settings to streamline the enrollment process.

uemcloud77.jpg

Don’t forget to add a synchronization schedule as well while you are at it.

uemcloud78.jpg

uemcloud79.jpguemcloud80.jpg

Instead of waiting for the scheduled sync, let’s perform a sync manually. Afterward, you can click on the Last report to review the result.

uemcloud81.jpg

uemcloud82.jpg

uemcloud83.jpg

Similar to on-premise setup, only the users within the directory-linked group are added to UEM cloud. However, the directory-linked group itself is not added. You have to take extra steps to add the directory-linked group to UEM cloud.

Go to Groups and follow the screenshots below.

uemcloud84.jpg

uemcloud85

Members of the group will still not show correctly after it’s added. You will need to perform another manual sync or wait for the scheduled sync to complete.

uemcloud86.jpg

In part 4 of this series, we will continue configuring push notification with BlackBerry Enterprise Mobility Server (BEMS) within Blackberry UEM cloud.

2 comments

  1. Do you have a spam issue on this site; I also am a blogger, and I was wanting to know your situation; many of us have developed some nice procedures and we are looking to trade techniques with other folks, why not shoot me an email if interested.

    Like

Leave a Reply to Macie Speciale Cancel reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.