EFT AD Site not in sync with AD domain controller


THE INFORMATION IN THIS ARTICLE APPLIES TO:
  • EFT Enterprise v 7.4.5.3 and later
  • EFT Enterprise v7.3.9.3 and later (in the 7.3 line)
  • EFT v4.x to v7.4.x stores advanced properties in the registry.
  • EFT v8.x stores Advanced Properties in a JSON file.

When you upgrade from EFT v7.4.x to EFT v8, the non-default settings that you have defined in the registry will be added to the Advanced Properties file during upgrade. (Default settings become part of the EFT configuration files.) For a more on how to use advanced properties, and a spreadsheet of the advanced properties, please refer to the "Advanced Properties" topic in the help for your version of EFT.

DISCUSSION

When the following registry setting is true, then users will always be enabled for an EFT AD Site. EFT user list will always show the user as enabled, even if disabled in AD. If the user is disabled in Active Directory that user cannot login. If the user is Enabled in Active Directory the user can log in. (EFT respects the user access privilege from Active Directory.)

In v8, add the name:value pair to the AdvancedProperties.JSON file, as described in the "Advanced Properties" topic in the online help for your version of EFT:

{
"ADUsersAlwaysEnabled": "false"
}

 Prior to v8, add the DWORD value to the registry as shown below:

HKEY_LOCAL_MACHINE\Software\WOW6432Node\GlobalSCAPE Inc.\EFT Server 7.3\

Type: BOOL

Value name: ADUsersAlwaysEnabled

Default Value: false

Cached: yes

Backup/Restore: yes

(There is no 32-bit version because there is no 32-bit OS supported.)