Configuration Manager - LDAP
The "LDAP" menu enables the configuration of the LDAP interface for user creation and authentication.
Description
Setting | What does the setting do? |
|---|---|
Active | |
entryDN | Root (DN) of the LDAP subtree in which the search is performed. |
identifierAttribute | LDAP attribute that must match the corresponding LMS attribute during identification, in order to identify an object. |
objectClass | LDAP object class for the description of data read. |
terminateAmbiguousPerson | Defines if a person to be imported will be set to passive when their external identifier in the third-party source is ambiguous. |
synchronize | Determines whether all people not imported in the LMS will be switched to passive after importing people from the specified source. true: All users not included in the current import process will automatically be switched to passive.false: The profiles of users not included in the import process will remain unchanged. |
importId | The Import ID is used to define a different user import for the same import source. |
ignoreUnmappedFields | Determines whether all source fields specified by mapping elements will be expected and imported in the imported file. TRUE: The attributes transferred in the import source for which no mapping is defined will be ignored. FALSE: If an attribute which is transferred with the imported data does not have any mapping defined, an exception will be generated. |
reference | Determines whether all source fields specified by mapping elements will be expected and imported in the imported file. TRUE: The mapping elements determine which fields will be imported. Additional attribute entries found in the import file will be ignored. FALSE: Only the attribute entries found in the import file will be imported. Additional attributes specified by mapping elements will be ignored. See also: Ignore Unmapped Fields. |
Person import | |
Scheduled import | |
Enable LDAP in the import wizard | Determines whether the user can import people from the LDAP profile data source specified via the “Users” import wizard. Ticked/True: The LDAP profile data source will be listed in the selection box for the possible import sources of the import wizard. Unticked/False: The LDAP profile data source specified cannot be selected as an import source in the import wizard. |
Implement as user | |
LDAP Identifier Attribute | |
Person import protocol | |
Log file name prefix | |
Relative upload path | |
Save as ZIP file | |
Field separator | Choice between “TAB”, “;”, “:”, “!” |
CSV encoding | Available options UTF-8 |
LDAP Group Import
Setting | What does the setting do? |
|---|---|
Import settings | Configuration of the group import from a LDAP source. |
Status | This setting is used to enable/disable the import. |
Base Group | Determines the group under which the imported group structure is created. |
Preserve import source attribute | Determines whether, in the table PLATFORMGROUPSPECIFICATION, the attribute is_importsource is retained or deleted when saving the user profile. |
Import unknown person | Determines whether group members whose user profile has not yet been registered in LMS are imported randomly as part of the group import. |
Import group assignment | Determines whether LMS users are assigned to imported groups in line with the affiliations specified in LDAP. Note: This functionality requires correct configuration of the LDAP user import. |
Scheduler integration | Configures the automatically scheduled import via the data source specified. |
Execution person | Determines under which LMS user account the scheduled import is executed. |
Log File Settings | This section contains settings used to define the format and location of the log file produced following group imports using the LDAP interface. |
CSV encoding | Determines the character set coding that LMS uses when creating CSV files for the export of reports. |
Logfile name pre-fix | Prefix for log file names. |
Relative path | Relative path to the source file. Referenced is the current data directory of the LMS server. |
Save as ZIP file | Indicates if the log file is saved as a zip file. |
Field separator | Indicates the character string for the field separation in the rows of a CSV file. The character string TAB indentifies the tab character. |
Group name | Name of the group. |
Group ID | LMS Object ID of the group. |
Parent ID | LMS Object ID of the parent group in the structure. |
LDAP Search Preferences | Configures the group search in LDAP directory tree. |
Entry DN | Root (DN) of the LDAP subtree in which the search is performed. |
Identifier Attribute | LDAP attribute that must match the corresponding LMS attribute during identification, in order to identify an object. |
Object Class | LDAP object class for the description of data read. |
Group Import Attribute Mapping | Determines which LDAP group attribute will be available for use by the corresponding LMS group attribute. |
Description Attribute | Determines the name of the LDAP group attribute which contains the group description. |
Member Attribute | Determines the name of the LDAP group attribute whose contents define the group participants. Note: the specified attribute delivers the list of the group participants Distinguished Names (DN). |
Name Attribute | Determines the name of the LDAP group attribute which contains the group description name. |
Role Attribute | Determines the name of the LDAP group attributes whose content will be assigned to the LMS group attribute role type. Note: For the specified attribute use the values 1 (default) and 2 (Content manager). |
Category Attribute | Determines the name of the LDAP group attributes whose content will be assigned to the LMS group attribute group category. Note: For the specified attribute use the values 1 (default), 2 (administration group) and 3 (portal group). |