Defining Active Directory Integration
The Active Directory Integration window lets you integrate Intel AMT with the security infrastructure of your network's Active Directory (AD). This integration includes the ability to:
- Use Domain user accounts for Kerberos authentication with the Intel AMT device
- Use the 802.1x protocol for wired and wireless access
- Use End-Point Access Control (EAC)
To define Active Directory Integration:
Select one of these options:
-
Active Directory OU -
Click and select the Active Directory Organizational Unit (ADOU) where the object will be stored in AD. During configuration, Intel SCS sends a request to the AD to create a Computer object representing the Intel AMT device. The object is added to the ADOU you defined in this field.
-
Path to file containing ADOU information – This is an advanced option, not necessary in most network environments, and requires knowledge about creating AD objects. Before you can use this option, you must manually create an object for the Intel AMT device. For more information, refer to the ADObjectFile.xml example in the sample_files folder.
This is the only setting that is required to activate AD integration for Intel AMT. The remaining settings in this window are optional, and can only be selected after defining the ADOU.
For more information about the remaining optional settings, see: