beautypg.com

H3C Technologies H3C Intelligent Management Center User Manual

Page 410

background image

392

Binding common users with LDAP synchronization policies

UAM provides the following ways to bind users with an LDAP synchronization policy:

Auto—UAM automatically synchronizes user data from an LDAP server and creates corresponding
LDAP users during synchronization.
These users are automatically bound with the synchronization policy. For more information, see
"

Manually executing a synchronization policy

."

Manual—A common user can be manually bound with a synchronization policy.

To manually bind access users with an LDAP synchronization policy:

1.

Click the User tab.

2.

Select Access User > LDAP User > Policy Name from the navigation tree.
The list includes all LDAP users bound with the policy.

3.

Click Add in the Bound User List area.
The Unbound User List window appears, displaying all the access users that are not bound with
any LDAP synchronization policy.

4.

Specify one or more of the following query criteria in the Unbound User Query area:

{

Account Name—Enter the account name of an access user. UAM supports fuzzy matching for
this field. For example, if you enter x, all access users with names containing x are queried.

{

User Group—Click the Select User Group icon . The Select User Group window appears.
Select a group and click OK. You can select only one user group for query.

Empty fields are ignored.

5.

Click Query.
The Unbound User List displays all unbound users that match the query criteria.

6.

Select one or more users.

7.

Click OK.
The selected users are displayed in the bound users list with the Status in the LDAP Server of
Unknown.

8.

Click Sync All in the Bound User List area to start executing the synchronization policy.
This process may take a few minutes or hours, depending on the amount of user data.
After synchronization, if a newly bound LDAP user exists in the LDAP server, the user status in the
LDAP server is changed to Existent. Otherwise, the user status in the LDAP server is changed to

Nonexistent.

Unbinding LDAP users with an LDAP synchronization policy

To unbind LDAP users with an LDAP synchronization policy:

1.

Click the User tab.

2.

Select Access User > LDAP User > Policy Name from the navigation tree.
The list includes all LDAP users bound with the synchronization policy.

3.

Select one or more users to be unbound from the policy.

4.

Click Unbind in the Bind Users List area.
A confirmation dialog box appears.

See also other documents in the category H3C Technologies Safety: