How to populate a group from LDAP
How to import data from an LDAP server to use in Guardium® groups.
About this task
When importing LDAP users:
- The Guardium admin user account will not be changed in any way.
- You have the option to clear existing members from a group before importing.
- Existing user passwords will not be changed.
- By default, new users are disabled when added, assigned the user role, and have blank passwords.
Special characters are not supported in user names.
If you are scheduling an import, consider any other scheduled imports you may have at that time, as this will affect the behavior of existing scheduled imports.
Procedure
What to do next
Run or schedule an import.
- Schedule an LDAP import by clicking Modify Schedule, filling out the schedule information, then clicking Save.
- To run the import on demand, click Run Once Now. After the task completes, the set of members satisfying your selection criteria will be displayed in the LDAP Query Results panel.
When you import on demand, you have the opportunity to accept or reject each entry returned from the LDAP server.
When you schedule an LDAP import, all of the LDAP entries that satisfy your search criteria will be imported.
Verify that members have been added to a group by selecting the group in the Group Builder, then clicking Modify, and looking at the group's membership.
For larger groups, it may be easier to verify members by using the Guardium Group Details report (
).