Originally published at: https://nextcloud.com/blog/integrating-nextcloud-in-your-active-directory-domain-with-ucs/
A lot of small businesses run a Microsoft Windows server with Active Directory to manage their users. Nextcloud has extensive user management with built-in LDAP and Active Directory support, but setting it up is a bit of a hassle. Univention Corporate Server (UCS), a popular platform to run Nextcloud on for small and medium sized businesses, makes this integration a lot easier.
Running Nextcloud in a small businessNextcloud runs on a wide variety of Linux servers like Ubuntu, RHEL/CentOS or SUSE Linux Enterprise/LEAP. For a company that runs a Windows server, it might perhaps make sense to consolidate their services and run Nextcloud in a virtual machine.
After the basic installation, the administrator setting up Nextcloud has to go to the user management settings and connect to the Active Directory services to be able to manage users in one place, on the Windows Server.
Univention makes this easierUnivention Corporate Server makes this process easier. Companies can simply get a virtual machine image with UCS and Nextcloud preconfigured. Nextcloud is integrated with the built-in LDAP directory and during installation, the administrator can add UCS to an existing Active Directory environment. In this mode UCS will work as a kind of proxy for user identities in Active Directory, seamlessly connecting Nextcloud to the Windows server without any manual work. (see the documentation here)
An alternative approach would be to setup a separate environment based on UCS, a new Active Directory domain. This new domain can be connected to an existing Active Directory domain to share and synchronize user and group objects. This is not an Active Directory Federation. The two separate domains just share the same information on identities. (see the documentation here)
<img src=“https://nextcloud.com/media/adconnector_1-en.png” alt=""class=“aligncenter img-responsive” />