beautypg.com

Validating on-demand synchronization policies, Managing ldap users, Managing – H3C Technologies H3C Intelligent Management Center User Manual

Page 97: Ldap users, Managing users bound to an ldap synchronization, Policy

background image

88

The Sync Policy list displays all LDAP synchronization policies.

3.

To start synchronization, click Synchronize for the policy.
This process might take a few minutes or hours, depending on the amount of user data.
When the synchronization stops, TAM displays the synchronization results, including the number
of user accounts successfully synchronized to TAM and the number of failures. If failures exist, click

Download to download or view the reasons for the failure in the operation log.

4.

To return to the Sync Policy list, click Back.

5.

On the upper-right side of the Sync Policy list, click Synchronized Result to view the results of the

last synchronization.

Managing users bound to an LDAP synchronization policy

To manage users bound to an LDAP synchronization policy:

1.

Click the User tab.

2.

On the navigation tree, select Device User Policy > LDAP Service > Sync Policies.
The Sync Policy list displays all LDAP synchronization policies.

3.

Click the Bound User icon for the target synchronization policy.
The Bound User list appears, displaying all LDAP users bound to the policy. For more information
about managing LDAP users, see "

Managing LDAP users

."

Validating on-demand synchronization policies

TAM allows you to validate all newly added or modified on-demand synchronization policies in bulk.
To validate an on-demand synchronization policy:

1.

Click the User tab.

2.

On the navigation tree, select Device User Policy > LDAP Service > Sync Policies.
The Sync Policy list displays all LDAP synchronization policies.

3.

Click On-Demand Sync in the Sync Policy list area.
A confirmation dialog box appears.

4.

Click OK.
All on-demand synchronization policies are validated.

Managing LDAP users

An LDAP user is a device user in TAM that is bound with an LDAP synchronization policy. Device users

synchronized from an LDAP server to TAM through an LDAP synchronization policy are automatically
bound with the synchronization policy. You can also manually bind a device user with a synchronization

policy or unbind a device user from a policy.
The following rules apply during user synchronization from LDAP to TAM:

For LDAP users in TAM that exist on the LDAP server, user information in TAM is overwritten by the
user information stored on the LDAP server.

For LDAP users in TAM that do not exist on the LDAP server, TAM marks the user status as Inexistent.

See also other documents in the category H3C Technologies Safety: