Step 3 - Create a Domain

ALM uses domain integration to automatically provision accounts for use.

Click Integrations in the left navigation panel and select the Domains tab to view the domains currently integrated into ALM.

Supported domains include;

• Active Directory
• Azure Active Directory
• Amazon Web Services
• Google Cloud Platform

Click Create Domain.

View Existing Domains

Click any domain to view the identifiers that characterize the domain. Use Search to quickly identify a domain for display.

The DOMAIN TYPE is displayed, along with whether the domain is enabled or disabled. Supported domain types include: Active Directory, Azure Active Directory, Google Cloud Platform Identity and Access Management, and Amazon Web Services Identity and Access Management.

Other features for a domain include: Delete in the top right of the page to delete the domain and Sync to sync the domain manually. To set up or edit a scheduled sync, click Edit under Sync Schedule.

Identifiers vary depending on the domain type and include:

Attribute	Definition	Features
General	domain details and sync features	Edit is available for both the Domain details and the Sync Schedule.
Users	users granted access to the domain	Search by DISPLAY NAME is avaiable. Filters are available for enabled and disabled users.
Groups	groups granted access to the domain	Search by group NAME is avaiable. Filters are available for enabled and disabled groups.
Roles	roles defined for use in the domain	Search by group DISPLAY NAME is avaiable. Filters are available for enabled and disabled roles.
Organizational Units	organizational units granted access to the domain	Both the NAME and DISTINGUISHED NAME are displayed for a unit.
Resources	users, groups, and policies associated with the domain	The resource NAME, TYPE, and ENABLED status are displayed.
Attributes	values assigned to the domain for management and tracking	The NAME and DESCRIPTION of each attribute is listed.
Managed Accounts	Active Directory accounts with privileges to run services and tasks for the domain	The DISPLAY NAME, SAM ACCOUNT NAME, DISTINGUISHED NAME, ENABLED status, and MANAGED STATE are shown. Filters are available fo reach of these fields.