Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Active Directory Domain Services (AD DS) can provide a rich store of user information, as described in [MSFT-ADC]. It contains identifying information, descriptive metadata (such as office number, title, and phone number), and relationship information (such as manager and groups a user belongs to). The profile service can import that information into the database. For each directory, the administrator creates a directory connection and describes which directory to connect to, what credentials to use, and what subset of the data to import.
A User Profile Service administrator can define properties that will be exported back to AD DS. A popular scenario for the export functionality is to send a user’s picture back to be stored in AD DS.