Skip to main content
日本語 简体中文 繁體中文

[Access Control] Users Are Not Synchronized from Active Directory to Access Control

Question

We are synchronizing users from an Active Directory environment to Access Control.
Newly added users are not being added to Access Control. Please advise on how to resolve this issue.

Answer

There are several possible reasons why user synchronization between Active Directory and Access Control may not work properly.
HENNGE will investigate the cause, so please contact HENNGE One Technical Support with the following information and files.
*If password synchronization is not working, please also refer to the following article.
Active Directory Integration: Troubleshooting Password Synchronization

  1. Configuration of Active Directory and sync server
    Example (copy and modify according to your environment) 
    Active Directory Domain Controller Servers (ADDC)
・ADDC 1st: Windows Server 2019
・ADDC 2nd: Windows Server 2016
・ADDC 3rd: Windows Server 2016
・ADDC 4th: Windows Server 2016
HENNGE Directory Sync Tool execution server (sync server)
・Co-located with ADDC 1st
・Separate from ADDC: Windows Server 2025
Active Directory Domain Controller Servers (ADDC) referenced by HENNGE Directory Sync Tool (specified in config.ini as server=)
・ADDC 1st
・ADDC 2nd
・ADDC 3rd
・ADDC 4th
  2. Assign-HDEOnePasswrdSyncGroup.bat file
    *Location: [ HENNGE Directory Sync Tool execution server ] - [ C:\HDEOne\ ] or [ Active Directory ] - [ C:\HDEOne\ ]
    *When sending, please change the file extension to .ba_ or similar.
    *If the file does not exist, please let us know.
  3. config.ini file
    Location: [ HENNGE Directory Sync Tool execution server ] - [ C:\Program Files\HDE One Directory Sync\ ]
  4. A file containing the results of executing the following PowerShell command
    *About ① and ② in the command below
    ①: Enter the [ SamAccountName ] of the relevant user.
    ②: Specify the output destination for the file, including the full path and file name.
    (e.g., c:\Users\Administrator\Downloads\2026mmdd_.csv)
    PowerShell command: 
    Get-ADUser -Identity "①" -Properties SamAccountName,Surname,GivenName,DisplayName,UserPrincipalName,mail,DistinguishedName | Select-Object SamAccountName,Surname,GivenName,DisplayName,UserPrincipalName,mail,DistinguishedName | Export-Csv -Path "②" -NoTypeInformation -Encoding UTF8
    *Please run PowerShell as an administrator.
    *In Active Directory, please execute the above PowerShell command in a single line.
  5. The following event log (evtx) files
    ・All Active Directory Domain Controllers
    ・HENNGE Directory Sync Tool execution server
    From
    [ Event Viewer ] - [ Windows Logs ] - [ Application ]
    *Please provide the files in evtx format.
    *Include the date and time when the issue occurred in the logs.
    *If you need a dedicated URL for file upload, please let us know.