It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Access

How to Deploy a CloudGen Access User Directory Connector With Docker

  • Last updated on

You can install a User Directory Connector on a CentOS using RPMs, or any Debian-based OS. It can also be run directly on any modern Linux (it is a single static binary), or using a docker container. You can obtain the mandatory configuration parameter, the enrollment_token, from the CloudGen Console when you create a new User Directory.

First, run this command to make sure you have the latest version of the connector:

 docker pull fydeinc/fyde-connector

By default, a connector runs indefinitely and runs its user/group syncing every 15 minutes. This behavior can be changed through other configuration options as described in the parameters for each source.

Example: Azure AD and Google Suite

First, run this command with the enrollment_token and the authorize switch:

docker run -it fydeinc/fyde-connector --enrollment-token='https://enterprise.barracuda.com/connectors/v1/connectorid1?auth_token=connector1_token&tenant_id=tenantid1' authorize

The script will prompt with this message:

Please authorize this connector to access your Azure AD directory information
To sign in, use a web browser to open the page https://microsoft.com/devicelogin and enter the code XXXXXXXXX to authenticate. 

Run docker with the sync switch:

docker run -it fydeinc/fyde-connector --enrollment-token='https://enterprise.barracuda.com/connectors/v1/connectorid1?auth_token=connector1_token&tenant_id=tenantid1' sync

If you want docker to run it without stopping, you need to run the command and send it to the background. Additionally, you can add a parameter to start the service again after the reboot.

docker run -d --restart always fydeinc/fyde-connector --enrollment-token='https://enterprise.barracuda......' --azure-auth-token='eAJ4q2wcbi......'

Example: LDAP Directory and Okta Directory

You do not need to give the authorize switch; you can run directly with the sync switch.

Example for LDAP:

docker run --name ldap-sync -it fydeinc/fyde-connector:latest --enrollment-token='https://enterprise.barracuda......' --ldap-host='XX.XX.XX.XX' --ldap-profile='ad' --ldap-user-search-base='dc=mydomain,dc=com' --ldap-group-search-base='dc=mydomain,dc=com' --ldap-auth-method='simple' --ldap-auth-username='MYDOMAIN\Administrator' --ldap-auth-password='******' --loglevel='debug' --no-ldap-use-starttls sync

Example for Okta:

docker run -it fydeinc/fyde-connector --enrollment-token='https://enterprise.fyde.com/connectors/v1/connectorid1?auth_token=connector1_token&tenant_id=tenantid1' --okta-domainname='mydomain.okta.com' sync
Last updated on