Configuration: Add a Domain

Adding your Active Directory domain immediately enables change monitoring and data backup for continuous protection against unwanted changes.

Adding a managed domain

To add a managed domain:

1. Navigate to Guardian > Home and click +Add.
   Or,

2. Navigate to Guardian > Configuration > Managed Domains and click +Add. The Domains and partitions configuration wizard will open.
   
   
   

3. On the Specify connection accounts page, you can either:

   1. Provide existing account credentials to add a domain for Forest Recovery and Change Monitoring.

      • Forest name

      • Account name

      • Password

      • AD connector

      NOTE: To configure a specific domain, a separate account for Cayosoft Guardian should be created with domain admin rights.

      

   2. Create new custom group Managed Service Accounts. For more information on the permissions, see Planning and preparation: Cayosoft Guardian system requirements .

      • Forest name

      • Account name

      • Password

      • Specify a name for gMSA to be created

      • Add account to privileged groups to use the automatic rollback feature

      NOTE: Use this option to let Cayosoft Guardian create a gMSA connection account. If you want a read-only account for change monitoring, do not select Add account to privileged groups to use the automatic rollback feature. Select that checkbox only when rollback permissions are required.

   

4. Click Next.

5. Enable domains and partitions which will be added to the product and click Next.
   
   

6. If you selected Create new custom group Managed Service Accounts earlier in the wizard, enter the account name for the gMSA. To use the account for change monitoring only, leave Add account to privileged groups to use the automatic rollback feature cleared. Select that option only if you want the account to have the additional permissions required for automatic rollback.

7. Enable Detect who performed changes or/and Start change collection immediately options on Change Monitoring options. Cayosoft Guardian enables native event logging for modifications on the partition to detect who perform changes.
   
   

8. Click Next. The Managed domains and partitions list will open.
   
   

9. Click Close. The added Managed domains will be displayed on the Managed Domains page.
   

Here you can perform the following actions:

• Refresh - refresh the page

• +Add - add a new domain

• Properties - edit the properties of the selected domain

• Check Health - check the health of the selected domain

• Export - export the list in HTML, CSV and JSON formats

• Delete - delete the selected domain

This Active Directory domain will now appear in your list of managed domains in Active Directory on-premises section on the Home tab.

Several collection jobs will be configured, like 'Default AD Backup Job'. By default, jobs are configured in continuous run mode. In case you need to run jobs at specific time, you can modify job settings under the Jobs node. Once the job completes the initial data collection, it would start to collect change records on each run. Navigate to Change Monitoring node to see what was changed in your domain.