Last updated 16 May 2024

AD Data Exchange - Technical notes

This section is for IT departments with technical questions about the install of the Hosted AD Data Exchange service.

What is the service for?

The service is installed so information can be exchanged between your active directory and IRIS Cascade.

Where is the service installed?

The service is installed on a web server on your domain.

How does the service work?

The service is called every 24 hours by our hosted systems. The information you have asked to synchronize is passed to the service from IRIS Cascade and committed to AD. If you have asked for information to be synchronized from AD to IRIS Cascade, on calling the service the information is read from AD and passed back to IRIS Cascade for processing.

Who installs the service?

IRIS Cascade installs the service remotely.

Can the service be installed on a DMZ?

No.

Can the service be installed on a shared server?

Yes, as long as the server has IIS installed and is on your domain.

What URL should we use for the service?

We use the same URL as for the hosted AD Single Sign on service, so, there is no need to pick another URL or create another external DNS entry.

Do we need to purchase an SSL certificate?

Yes, an SSL certificate must be used for this service.

Is the service accessible to anyone over the internet?

The service only needs to be accessible from our hosted web servers. We lock this down in IIS so only our IP addresses can access the service, however, we recommend that you also put firewall rules in place to only allow access from our IP addresses.

Can this be used with Azure AD?

No, it only works with on premise AD only.

Did you find the Help Centre useful today?