List of published manuals

List of manuals for contractors

IIJ ID Service Password Sync Manual [Windows Active Directory]

Password Sync Operational Flow

Password Sync synchronizes passwords with the IIJ ID Service via the following sequence.

  1. The user requests a password change for Active Directory.
  2. The password is sent to the domain controller.
    • If there are multiple domain controllers, one of them is selected randomly.
  3. Password Filter DLL is called to inspect password policy.
    • Password Filter DLL for Password Sync is also called, but no operation is performed here.
  4. The password is saved in Security Account Manager.
  5. Password Filter DLL is called again to notify of a password change.
    • Password Filter DLL for Password Sync is also called to get the user information and plaintext password.
  6. Password Sync is started by Windows’ Task Scheduler.
  7. Password Sync gets detailed information about the user from Active Directory and confirms that the user exists in IIJ ID.
  8. Password Sync synchronizes the password with the IIJ ID Service.