Configure ADC with Event Log Collector and Domains

Available Languages

Download Options

  • PDF     (686.3 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (758.9 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (305.1 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:October 8, 2025
Document ID:225176

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

    Introduction

    This document describes how to configure the Active Directory Connector (ADC) with Event Log Collector and Domains.

    Configuration Options 

    There are two setup options available for using the Active Directory:

    1. Registering Domain Controllers: This involves the use of Virtual Appliances (VA) and the AD Connector, with the AD Connector communicating directly with all registered Domain Controllers (DCs).
    2. Event Log Collector: This setup includes the Domain, VA, and the AD Connector. In this scenario, Windows Event Log Forwarding sends information from the DCs to a central Event Log Collector server. The AD Connector then communicates only with this central server, not the DCs

    2206247349954022062473499540

    2206247350222822062473502228

    2206251824027622062518240276

    Please note: Registering Domain Controllers and adding domains are different processes.

    2206251824168422062518241684

    1. To start the configuration in the Umbrella dashboard, navigate to Deployments > Configuration > Sites and Active Directory and click Add. Select Windows Event Log Collector and click Next.

    2206247350722022062473507220

    2. Customers can check the log file properties (in Windows Event Viewer) to find out the name of the log. Please note that the log file name must be entered without the .evtx extension or full path details.

    2206251824475622062518244756

    Important Considerations:

    For the Connector to function correctly, it is necessary to continue with normal deployment steps:

    1. Register a 'Domain' on the 'Sites and Active Directory' page for the purpose of user provisioning. This is necessary because there is no registered DC to sync users/groups from.

    2. Deploy 'Virtual Appliances'.

    There are some known limitations to this deployment mode:

    • The Connector can appear in an error state, even when working properly.

    For the AD connector to work efficiently, certain permissions are required. You can review these permissions here:Required Permissions for the OpenDNS_Connector User.

    Revision History

    Revision Publish Date Comments
    1.0
    08-Oct-2025
    Initial Release
    TAC Authored

    Contributed by Cisco Engineers

    Was this Document Helpful?

    FeedbackFeedback

    Contact Cisco

    This Document Applies to These Products