Synchronizing User Configuration with LDAP Servers

You can adopt groups and users from your company's external user management into the Innovator central user management. You can use automatic synchronization for regularly keeping it up-to-date.

Use the Synchronize User Configuration with LDAP Servers dialog to adopt groups or users from your company's external user management via LDAP.

If your network's user administration uses the Lightweight Directory Access Protocol (LDAP), you can load and update user names from this source (only available for Windows). You also require other data to do this, which you can request from the system administrator.

Proceed as follows:

  1. Enter login details for the LDAP server.

  2. Verify server connection and groups and/or users selected via the filter by loading the external server data. This does not yet modify the central user management.

  3. Import the groups and/or users in the central groups and/or user lists. Missing entries are added and existing entries are updated.

    LDAP groups are imported including all users assigned in the LDAP. If these users already exist, then only the group assignment is changed. If they do not already exist, then they are created as new.

    If users were removed from a group, then their group membership is deleted in the central user management. These users still remain in the central user management with the rules set for them and need to be manually removed.

    If users should have been removed from the LDAP directory but still remain in the repository with the rules set for them, then they need to be manually removed.

    During LDAP synchronization, the user is queried directly about user assignment to groups via the "MemberOf" field. If no users are found here, then an attempt is made to determine the members of a group using the "UniqueMember" for the group.

  4. Save the connection settings so that you can automatically synchronize user groups. These are stored locally and used when the administration program is accessed if synchronization was activated by a parameter.

Related Topics Link IconRelated Topics

This chapter contains the topics: