Go to documentation repository
The Service LDAP module allows you to:
- Import data from an LDAP address book into the Axxon PSIM database.
- Synchronize the Axxon PSIM database with an LDAP address book.
Attention!
All entries in the LDAP directory must have the uid (unique user ID) and ou (user department) attributes. If these attributes are absent, the Service LDAP fails to import and synchronize users from the LDAP address book and the Axxon PSIM database. If other attributes are used as unique ID and department name in the address book, you must specify these attributes when configuring the Service LDAP object (see Configuration of correspondence between address attributes and Axxon PSIM DB fields).
When importing or synchronizing, the users that have been manually created in Axxon PSIM before or after the import operation are not affected.
You can import data and synchronize the Axxon PSIM database with the LDAP address book using macros (the Get all employees action of the Service LDAP object, see Example macro for importing users from LDAP address book. For more information on macros, see Creating and using macros). Use a Timer object for scheduled synchronization (see Creating and using the Timer object).
The following LDAP attributes are supported by Axxon PSIM:
LDAP attribute | Field in Axxon PSIM | Commentary |
User | ||
sn | Surname (the User object, the name parameter) | If there is no sn attribute in the returned data, such an entry is ignored. Note that the last name of the user is stored in the "name" field in the Axxon PSIM database |
givenname | Name (the User object, the surname parameter) | Note that the first name of the user is stored in the "surname" field in the Axxon PSIM database |
uid | ID in the external DB (the User object, the external_id parameter) | If there is no attribute with a unique ID in the returned data, then a new employee is created, that is, there is duplication of employee. If another attribute is used as a unique ID in the address book, then you must specify this attribute when configuring the Service LDAP object (see Configuration of correspondence between address attributes and Axxon PSIM DB fields) |
| Email address (the User object, the email parameter) | ||
| telephoneNumber | Phone (the User object, the phone parameter) | |
| title | Title (the User object, the post parameter) | |
Department | ||
ou | Department name (the Department object, the name parameter) | If there is no attribute with a department name in the returned data, a department named Service LDAP is created and the user is placed in that department. If another attribute is used as a department name in the address book, then you must specify this attribute when configuring the Service LDAP object (see Configuration of correspondence between address attributes and Axxon PSIM DB fields) |
| Group | ||
| group | User group in Request type (see Configuring the connection to the LDAP address book) | The attribute is used to import user groups when selecting the request type Group or Users and groups |
Overview
Content Tools