Synchronizing Ldapgroup Accounts With Ldap - Novell IFOLDER 3.7 - ADMINISTRATION Administration Manual

Hide thumbs Also See for IFOLDER 3.7 - ADMINISTRATION:

Manual (23 pages)

Manual (136 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

Table of Contents

If the user is moved to a different container that is not specified as a Search DN before the user

is moved, the user is removed from the iFolder user list. The user's iFolders are orphaned and

the user is removed as a member of iFolders owned by others. If the new container is later

added as a Search DN, the user is treated as a new user, with no association with previous

iFolders and memberships.

If the user appears in multiple defined Search DNs, and if one or more DNs are removed from

the LDAP settings, the user remains in the iFolder user list if at least one DN containing the

user remains.

If the user is deleted from LDAP or moved from all defined Search DNs, the user is removed as

an iFolder user. The user's iFolders are orphaned and the user is removed as a member of

iFolders owned by others.

The iFolder Admin user and iFolder Proxy user are tracked by their GUIDs, whether their user

objects are in a context in the Search DN or not.

2.5.3 Synchronizing LDAPGroup Accounts with LDAP

You can specify any existing containers and groups in the Search DNs field of the iFolder LDAP

settings. Based on the Search DNs, LDAPGroups are automatically provisioned with accounts for

iFolder services.

The list of LDAPGroup is updated periodically when the LDAP synchronization occurs. New

LDAPGroups are added to the list of iFolder users. Deleted LDAPGroups are removed from the list

of iFolder users. (This might create orphaned iFolders if the deleted LDAPGroup owned any

iFolders). If by mistake LDAPGroup is deleted from the LDAP, you can create that LDAPGroup

again with the same FDN within the Delete member grace interval so that you can recover the user's

iFolders. For more information on this, see

Server Details Page" on page

IMPORTANT: Whenever you move a LDAPGroup between contexts and you want to provide

continuous service for the LDAPGroup, make sure to add the target context to the list of LDAP

Search DNs before you move the LDAPGroup object in eDirectory.

The LDAP synchronization tracks a LDAPGroup object's eDirectory

LDAPGroup in multiple contexts. It tracks as you add, move, or relocate LDAPGroup objects, or as

you add and remove contexts as Search DNs.

The following guidelines apply:

If the LDAPGroup is added to an LDAP container, group, or LDAPGroup that is in the Search

DN, the LDAPGroup is added automatically to the iFolder LDAPGroup list.

Any changes to the LDAPGroup member list are automatically synchronized during next

synchronization cycle.

If a LDAPGroup is moved to a different container, and the new container is also in the Search

DN, the LDAPGroup remains in the iFolder LDAPGroup list.

If you intend to keep the LDAPGroup as an iFolder LDAPGroup without interruption of

service and loss of memberships and data, the new container must be added as a Search DN

before the LDAPGroup is moved.

OES 2 SP1: Novell iFolder 3.7 Administration Guide

Step 7 on page 133

132.

in the

"Accessing and Viewing the

GUID to identify the

Table of Contents

Synchronizing Ldapgroup Accounts With Ldap - Novell IFOLDER 3.7 - ADMINISTRATION Administration Manual

2.5.3 Synchronizing LDAPGroup Accounts with LDAP

Related Manuals for Novell IFOLDER 3.7 - ADMINISTRATION

Related Content for Novell IFOLDER 3.7 - ADMINISTRATION

Table of Contents