Start a new topic
Implemented

AD synchronization and Credential propagation

Hello,


I'm managing ~3000 RDP Connections with several Domains and credentials within RoyalTS.


I'm extremely missing the ability to keep RoyalTS in Sync with Active Directory. For me it's just impossible to keep track within the changes of this amount of connections.

I already found a old post in here which leads to an Powershell Script on github. Unfortunately this is for the V3 Beta and I had to modify some stuff to get it running with v4. For me it's not a good way to workaround the problem as it gets very complex in my Environment.


As well I'would love to see the ability to set credentials on a folder an then a checkbox which applies this credential within _every_ connection inside this folder. Currently I don't see a way to perform this without touching every single machine (no-go).


Hi Ben,


right now, the only way to build docs dynamically from a source like Active Directory, is through our powerful PowerShell cmdlets. To get started with this, go here:

https://content.royalapplications.com/Help/RoyalTS/V4/index.html?scripting_gettingstarted.htm


There are already a couple of community scripts out there to help you get started with AD sync, like this:

http://www.powershellmagazine.com/2015/01/08/introducing-the-royal-ts-powershell-module/

https://github.com/janegilring/PSCommunity/blob/master/Royal%20TS/Update-RoyalFolder.ps1


If you create the structure using script, you can, of course, set up all the connections to inherit credentials already. If you want to change many objects (e.g. credential inheritance), you can use our powerful bulk-edit feature:

https://www.royalapplications.com/go/kb-ts-win-folderdashboard
https://www.royalapplications.com/go/kb-ts-win-bulkedit


For new objects, use the Aplication -> Default Sertings folder to setup all the default values.

One little sneak peak: we are working on something for the next major release which will be much more helpful in your situation to dynamically pull in servers and connections from external sources, like AD. Stay tuned!


Regards,
Stefan

Hello,


thanks for your feedback, when can we expect the next major release? This year?


regards

Ben

We are aiming for the first public beta version in summer this year. The release date then depends on feedback and quality.


Regards,
Stefan

Hi,

any news on this? Is the Beta already out?


Ben

Hi Ben,


you are right, the beta is out and we introduced a very cool new feature in Royal TS V5 for Windows: Dynamic Folders


You can basically populate a folder from a script output within Royal TS. You just create a dynamic folder, choose your script interpreter (e.g. PowerShell as it is "ready to go"), put in a script which gathers your computers from AD and spits out a specific json format which represents the folder structure you want for the dynamic folder. The above link will also guide you to our github repository with sample scripts and the documentation. Right now, we don't have a script for pulling AD objects. If you want to contribute some scripts, let us know...


We haven't really promoted dynamic folders yet as it may still be rough on the edges. Once we have enough user feedback confirming all is working, we will publish a series of blog posts and build more sample scripts.


Regards,
Stefan

Hi,


this is not what I'm looking for. I want to tell RoyalTS where my Domain Controller is and which OUs to synch and then I expect Royal TS to sync all Computer Accounts inside this OU on a regular basis.


Regards

Ben

Hi Ben,


I understand. In our research we found out that many users have many different use cases. In addition, Royal TS offers many different connection types. For example: you state you want all Computer Accounts inside an OU "in Royal TS". What exactly do you mean by "Computer Account"? We have different connection types and some users may want them to show as RDP connections (which I guess is your use case) while others want them to show as SSH or Event Log connection, etc. We also have to keep in mind that we need to support multiple platforms (Windows, macOS, mobile). The scripting approach may not be the easiest way to get started but it can really do everything.


That being said, the dynamic folder investment could be used for higher level features with a simpler UI for future "pre-defined" dynamic folder features.


Regards,
Stefan

Ben,
The best way I have found is it have a scheduled / event triggered function rebuild the Royal TS Connection Documents.
I built mine with TeamCity and the Royal TS Powershell module. For your case, it might be good to have the build kickoff every time a server is domain joined. You also don't have to use TeamCity, you could write the powershell script and setup a scheduled task every morning.

Ben - are you still looking for something to assist with this? I am working on something for this (as I got the same issue) let me know - I can send you an early copy of what I'm working on with the dynamic folders

I'm happy to report that Royal TS 5.0 has been released and includes dynamic folders:

https://www.royalapplications.com/go/kb-all-royaljson


This allows you to integrate 3rd party tools or AD synchronization. We also have a couple of samples on our github repo which shows how this works:

https://github.com/royalapplications/toolbox


For more information about the major new features of Royal TS 5.0, please head over to our https://www.royalapplications.com/ts/win/features-upgrade

Royal TS 6.0 now and still no native AD synchronisation. :( 

Hi Daryl,


as discussed in this thread, the way to integrate something like that would be dynamic folders. We think this is the best way because it's very flexible and ensures everyone can implement exactly what's needed for the specific use case.


Regards,
Stefan

Login or Signup to post a comment