About LDAP Sync

If your organization already stores users and user groups in an ActiveDirectory (AD), you may want to use it to authenticate Automic System users as well. Instead of managing users in the AE manually, you can use LDAP Sync to keep user objects in sync with the AD user base.

What is LDAP Sync?

LDAP Sync is a command line tool that can be used to synchronize the Microsoft Active Directory (AD) and the Automic system user objects; that is, Automation Engine (AE) users and user groups.

LDAP and Active Directory Definitions

LDAP (Lightweight Directory Access Protocol) is an application protocol that can be used to manage user data in directory service providers like Active Directory (AD).

Which Actions can be executed via LDAP Sync?

LDAP Sync enables you to:

• Create and update users and user group assignments in the AE/CDA based on the users defined in the Active Directory.
• Remove user group assignments from an AE/CDA user.
• Deactivate users in the Automation Engine.

Graphical Overview

The following diagram illustrates the relationships between the LDAP Sync component and related components like LDAP, AE or CDA.

See also:

• Installing LDAP Sync
• Synchronizing your LDAP Directory with the Automic system User Base via LDAP Sync