SMA-SM 2017.11_How to sync users from embedded OpenLDAP to IDM

  • KM03140801
  • 11-Apr-2018
  • 11-Apr-2018

Summary

SMA-SM 2017.11_How to sync users from embedded OpenLDAP to IDM

Question

Background Knowledge:
The auto user sync from LDAP to IDM follows 2 rules which are controlled by 2 parameters in IDM. The 2 rules description are as below:
1. Sync every 10 minutes for new groups
2. Sync every 12 hours for all old groups
If a new user is added to an old group, it would take 12 hours automatically
We could use REST API to sync all users from LDAP to IDM manually.
NOTE: There is no REST method to sync a specific user from LDAP to IDM
Scenario:
Add a new user whose uid is test1 in embedded OpenLDAP, add the user test1 in default group administrators;
Add a new group which cn is testgroup with a new user whose uid is test2, configure the new group in Propel Admin UI;
Use Postman to call REST API in order to sync user from OpenLDAP to IDM, then login Service Portal with the new user test1 / test 2 for verification.

Answer

The attached document is verified with SMA-SM 2017.11