CentraSite 10.11 | CentraSite User’s Guide | User Management | Managing Users through CentraSite Business UI | Synchronizing LDAP Users
 
Synchronizing LDAP Users
Pre-requisites:
To synchronize a LDAP user, you must have the Manage Organizations permission in CentraSite.
You synchronize LDAP user IDs imported to the CentraSite registry with the users and user groups in an external authentication system, for example, LDAP directory server. Synchronization simplifies the maintenance by eliminating the need to update two systems when the user information changes in the external authentication system.
You might consider synchronizing a LDAP user in CentraSite if you want to update any changes to the user, for example, modification to the user name, that is performed in the LDAP directory.
When CentraSite executes the synchronization, it accesses the external authentication system to update the user information. It performs the synchronization for each user who is a member of an imported LDAP group and is also a registered user on CentraSite.
The following limitations apply when synchronizing user information to CentraSite from LDAP directory:
*CentraSite allows one-way synchronization from the LDAP directory. If you change user information on the CentraSite registry, the changes are not synchronized back to the configured LDAP directory.
*Users imported to CentraSite through LDAP are always authenticated in CentraSite through the configured LDAP directory. If the LDAP directory is unavailable for any reason, the LDAP imported users cannot log in to CentraSite.
You can synchronize LDAP users in CentraSite in the following ways:
*Through CentraSite Business UI: You can synchronize an individual user with the LDAP directory.
*Through Command Line Interface: You can synchronize a set of users through group synchronization with the LDAP directory.
CentraSite provides a command tool named sync Ldap Group for this purpose. Instructions for synchronizing LDAP users through the LDAP group synchronization is provided in Synchronizing LDAP Groups.
*To synchronize LDAP users
1. In the CentraSite Business UI activity bar, click Organizations.
This displays a list of defined organizations in the Organizations page.
2. Click an organization to which the user belongs.
3. In the Organization Details page, click the Users profile.
4. Click the LDAP user you want to synchronize the user information from the LDAP directory.
This opens the User Details page. Also, the actions bar displays a set of actions that are available for working with the displayed user.
5. Click Synchronize.
CentraSite accesses the LDAP directory and updates the user information in the registry.