Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
en:services:network_services:active_directory:start [2020/03/25 18:45]
fketten has to be updated / English translation not sufficient
en:services:network_services:active_directory:start [2020/06/23 08:01] (current)
0nkopp1 Add device VPN section
Line 15: Line 15:
   * [[en:​services:​email_collaboration:​ms_sharepoint:​start|SharePoint administrative services]]: That allow a very good document- and information-centric workgroup collaboration.   * [[en:​services:​email_collaboration:​ms_sharepoint:​start|SharePoint administrative services]]: That allow a very good document- and information-centric workgroup collaboration.
   * [[workplace environment|The workplace environment]]:​ The institutes orient on our standard Windows workstation. In order to facilitate the management of jobs there are techniques such as Microsoft Windows Server Update Services (WSUS), Sophos Enterprise Console or the central software distribution who are used.   * [[workplace environment|The workplace environment]]:​ The institutes orient on our standard Windows workstation. In order to facilitate the management of jobs there are techniques such as Microsoft Windows Server Update Services (WSUS), Sophos Enterprise Console or the central software distribution who are used.
 +
 +==== Connection to Active Directory ====
 +=== Inside the GÖNET ===
 +The Active Directory of the GWDG is accessible for users and computers within the entire [[en:​services:​network_services:​goenet:​start|GÖNET]]. From the local institutes, users can log in directly to the devices managed in the Active Directory with their GWDG account. During the login process, the familiar working environment is loaded with a GWDG ID from the user profile, which is stored on the [[en:​services:​storage_services:​file_service:​fileservice_ad:​personal_drive|Personal Drive]] of the user account. In addition, device and user settings (so-called //group policies//) are synchronized with the Active Directory and set during login. Thus, all important settings are made before starting work on the device and the user finds the familiar working environment.
 +
 +=== Outside the GÖNET ===
 +
 +However, if a device leaves the institute and is used from outside the GÖNET, no connection to the Active Directory can be established at the next login. The consequences are long waiting times during the login process and temporary profiles because the personal drive cannot be accessed. For these cases, the GWDG provides a [[en:​services:​network_services:​vpn:​start|VPN solution]] using the VPN client AnyConnect, which can be used before the user logon (so-called //device VPN//). The connection between the device and Active Directory is established by the software and the login works as usual. This VPN solution can be activated by institute administrators via policy and does not require any manual installation on the device. ​
 +
 +After activation, another icon appears in the lower right corner of the Windows device login screen.
 +
 +{{ad-device-vpn_0.jpg}}
 +
 +One click opens the AnyConnect window. Here a connection to the VPN service of the GWDG via vpn.gwdg.de (or alternative accesses, see [[en:​services:​network_services:​vpn:​start|Overview]]) can be established.
 +
 +{{ad-device-vpn_1.jpg}}
 +
 +The GWDG registration data are required to establish the connection. The account that is to be used to log on to the Windows PC should be used here.
 +
 +{{ad-device-vpn_2.jpg}}
 +
 +After the VPN connection is established,​ you can continue with the user login as usual. ​
 +
 ====Sources of information==== ====Sources of information====
       * GWDG News Article [[https://​www.gwdg.de/​documents/​20182/​27257/​GN_06-2015_www.pdf#​page=4|"​Grundstruktur des Active Directory der GWDG"​]] (Issue 6/2015; only in German)       * GWDG News Article [[https://​www.gwdg.de/​documents/​20182/​27257/​GN_06-2015_www.pdf#​page=4|"​Grundstruktur des Active Directory der GWDG"​]] (Issue 6/2015; only in German)