Manually Importing Groups

You can transfer groups from external user configurations to the central user management of your company. You can also automate the update of this information.

Prerequisites

You have opened the Synchronize User Configuration with LDAP Server dialog.

You must be able to access the LDAP server via the network. You need to be able to log-in to the server.

Context

Use the Synchronize User Configuration with LDAP Servers dialog to adopt groups from your company's central user management via LDAP.

If your network's user administration uses the Lightweight Directory Access Protocol (LDAP), you can load and update user names from this source (only available for Windows). You also require other data to do this, which you can request from the system administrator.

During the import, the selected groups are imported into the central user management and added/updated there. The groups and the users assigned to the groups are imported.

If these users already exist in the central user management, then only the group assignment is changed. If they do not already exist, then they are created as new.

If users were removed from the loaded group, then their group membership is deleted. These users still remain in the central user management with the rules set for them and need to be manually removed.

How to proceed

  1. Jump to the Groups tab.

  2. To restrict the access to the LDAP directory structure, enter the base DN as the starting point in the LDAP directory structure into the Branch input field in the form dc=<company>,dc=<domain>.

  3. To restrict the loading and importing process to certain groups and their users, enter a filter for all groups in the form <attribute1>=<value1>, <attribute2>=<value2>,... into the Filter Expression field, e.g. (objectClass=group).

  4. Click on the Load button.

    The group or user names are loaded via LDAP. This may take some time.

    The State of the entry column in the Groups table indicates whether the loaded group is currently contained in the central user management or whether the data is obsolete. You can only import groups that are not yet contained or are obsolete.

    The Members table lists the users of the selected group. The State of the entry column indicates whether the loaded user is currently contained in the central user management. The member data is for information purposes only.

  5. Restrict the displayed groups by entering a character string into the <Filter> field.

  6. Activate the check box to select the displayed group.

  7. Activate the Check all check box in the column header to selected all displayed groups.

  8. To select further groups, repeat the selection steps with another character string.

  9. To import the selected obsolete or non-existent groups and their non-existent users, click on the Import button.

    The selected groups and the assigned users are imported into the central user management and added or updated there.

    If these users already exist in the repository, then only the group assignment is changed. If they do not already exist, then they are created as new.

    If users were removed from the loaded group, then their group membership is deleted. These users still remain in the repository with the rules set for them and need to be manually removed.

    A message appears to confirm successful import.

  10. To close the dialog, click on Close.

Related Topics Link IconRelated Topics