SMA-SM 2017.11_How to sync users from embedded OpenLDAP to IDM
The auto user sync from LDAP to IDM follows 2 rules which are controlled by 2 parameters in IDM. The 2 rules description are as below:
1. Sync every 10 minutes for new groups
2. Sync every 12 hours for all old groups
If a new user is added to an old group, it would take 12 hours automatically
We could use REST API to sync all users from LDAP to IDM manually.
NOTE: There is no REST method to sync a specific user from LDAP to IDM
Add a new user whose uid is test1 in embedded OpenLDAP, add the user test1 in default group administrators;
Add a new group which cn is testgroup with a new user whose uid is test2, configure the new group in Propel Admin UI;
Use Postman to call REST API in order to sync user from OpenLDAP to IDM, then login Service Portal with the new user test1 / test 2 for verification.
Please refer to the attachment "SMA-SM 2017.11_How to sync users from embedded OpenLDAP to IDM.docx" for detail
The attached document is verified with SMA-SM 2017.11