Add Groups

As is the case with Password Depot Enterprise Server users, you can choose one of the following options to add new groups to the Server Manager:

1. Using the button New group
2. Through Active Directory Import
3. Through Microsoft Entra ID Import (formerly Azure AD)
4. Through OIDC Import

Add new groups manually

You can add new, local standard groups to the Server Manager manually using the New group button available in the Groups area on the right. Add a group name afterwards. If required, you can also add a detailed group description to the Description field. Manually created, local groups are always standard groups, and you cannot change that. Using the Members tab, you can add new users to a group afterwards. For more information, please also have a look at the chapter Group Properties.

HINT: You can add local users as well as Active Directory / Microsoft Entra ID / OpenID Connect users to standard groups. Depending on the corresponding user type, the group members will choose the appropriate authentication type for the Enterprise Server login.

Add new groups through Active Directory Import

You can also add Active Directory groups to the Server Manager (through Active Directory Import). This may be helpful, for example, if you would like to use already existing Active Directory groups in the Server Manager as well. To start synchronization, open the Server Manager and go to Tools → Import from Active Directory. The group objects will then be imported into the Server Manager from Active Directory. If the synchronization was completed successfully, you can see all objects that were imported from Active Directory in the Groups area afterwards.

Password Depot also supports nested AD security groups.

WARNING: If group A is a member of group B and group A is imported via the built-in AD import wizard, group B and its users will also be imported (if not unchecked manually). If any users are deselected, Password Depot will not import the corresponding group but only the selected users.

When you launch the wizard, you will first have to provide information about the domain you would like to use for importing users/groups to Password Depot Enterprise Server.

Groups that have been added to the Server Manager through Active Directory synchronization will also include the corresponding Active Directory users/members automatically. If a database is assigned to an Active Directory group afterwards, all group members (=AD users) can log on to the Enterprise Server through Integrated Windows Authentication (SSO). Again, please note the following in this case: During authentication, a user's user name and password will be sent to the Active Directory. A message will then be sent back to Password Depot saying that the data sent is either correct or wrong. Based on this information, the login will either be completed (if the data sent is correct) or denied (if it is wrong). Therefore, it is important that the user data available in the Server Manager corresponds to the user data in the Active Directory. Thus, we recommend performing Active Directory synchronization on a regular basis in order to transfer changes from the Active Directory into the Server Manager, too.

HINT: Refer to the chapter titled Import from Active Directory for a detailed explanation.

Add new groups through Microsoft Entra ID Import

If administrators want to work with Microsoft Entra ID groups in the Server Manager, synchronization is required. To initiate synchronization, open the Server Manager and go to Tools → Import from Microsoft Entra ID. The group objects will then be imported into the Server Manager from Microsoft Entra ID. If the synchronization was completed successfully, you can see all objects that were imported from Microsoft Entra ID in the Groups area afterwards.

As is the case with Active Directory groups, all Microsoft Entra ID groups that have been added to the Server Manager through Microsoft Entra ID synchronization will also include the corresponding Microsoft Entra ID users/members automatically. If a database is assigned to a Microsoft Entra ID group afterwards, all group members (=Microsoft Entra ID users) can log on to the Enterprise Server using Microsoft Entra ID Authentication.

HINT: Refer to the chapter titled Import from Microsoft Entra ID for a detailed explanation.

See also: Add users, Add users by department

Add new groups through OIDC Import

If administrators want to work with OIDC groups in the Server Manager, synchronization is required. To initiate synchronization, open the Server Manager and go to Tools → Import from OIDC. The group objects will then be imported into the Server Manager from OpenID Connect. If the synchronization was completed successfully, you can see all objects that were imported from OIDC in the Groups area afterwards.

As is the case with Microsoft Entra ID groups, all OIDC groups that have been added to the Server Manager through OIDC synchronization will also include the corresponding OIDC users/members automatically. If a database is assigned to an OIDC group afterwards, all group members (=OIDC users) can log on to the Enterprise Server using OIDC Authentication.

HINT: Refer to the chapter titled Import from OpenID Connect for a detailed explanation.

 

Return to the Password Depot homepage • Support Center • Legal Notice • Privacy Policy