To designate AD Connect as your identity repository, install AD Connect to your server and configure PingOne for Enterprise to connect to it.
- One of the following platforms:
- Microsoft Windows Server 2019 Desktop (not Core)
- Microsoft Windows Server 2016
- Microsoft Windows Server 2012 R2
- Microsoft Windows Server 2012
- TLS 1.2
- Microsoft .NET Framework 4.7.2 installed. The framework installation file is packaged with the AD Connect distribution.
- Port requirements:
- TCP 443 inbound/outbound (Websocket connections to PingOne for Enterprise)
- (If IWA is enabled) TCP 80 internal, inbound/outbound (IWA connections)
- Ensure that the AD Connect account lockout option is enabled for all PingOne for Enterprise users. This is necessary to protect user information in PingOne for Enterprise.
- AD Connect does not support authentication using IWA with Microsoft 365 or mobile devices. IWA does not work with iOS.
You must install AD Connect on a Windows ServerĀ® host that resides in an Active Directory domain.
If you're installing AD Connect on a host in a DMZ, you must ensure some ports are open. For more information, see AD Connect in a DMZ .