About LDAP Sync
If your organization already stores users and user groups in an ActiveDirectory (AD), you may want to use it to authenticate ONE Automation users as well. Instead of managing users in the AE manually, you can use LDAP Sync to keep user objects in sync with the AD user base.
This page includes the following:
What is LDAP Sync?
LDAP Sync is a command line tool that can be used to synchronize the Microsoft Active Directory (AD) and the CA Automic One Automation Platform user objects; that is, Automation Engine (AE)
LDAP and Active Directory Definitions
LDAP (Lightweight Directory Access Protocol) is an application protocol that can be used to manage user data in directory service providers like Active Directory (AD).
Which Actions can be executed via LDAP Sync?
LDAP Sync enables you to:
- Create and update users and user group assignments in the AE/CDA based on the users defined in the Active Directory.
- Remove user group assignments from an AE/CDA user.
- Deactivate users in the Automation Engine.
Graphical Overview
The following diagram illustrates the relationships between the LDAP Sync component and related components like LDAP, AE or CDA.
See also: