...
The order of the directories is important. When searching for users and groups, User Administration checks directories in order starting from the top of the table. Click and drag directories into the order that they should be searched.
| Anchor | ||||
|---|---|---|---|---|
|
You can import users from your user directories after configuring your LDAP connection.
...
A summary of the results will appear after the import completes.
Importing Group Members
When you have properly configured your Group Import Settings, there are a few ways you can synchronize members of LDAP groups.
- (Manual) - Click the Import icon in User Directories UI. See Importing Users.
- (Automatic) - Set up a periodic job to call the REST API. See Automating LDAP Synchronization.
- (Automatic) - Log into DTP as a user that is part of the LDAP group. If the user does not exist, it will be automatically created in User Administration.
If User Administration is configured to use multiple LDAP servers, group synchronization will be based on the first matching LDAP group available.
User Administration REST API
The User Administration module includes a dedicated API that you can use to automate user administration tasks. Choose API Documentation from the help menu on the User Administration page. The documentation describes the available endpoints. The API is only accessible from the User Administration page.
| Anchor | ||||
|---|---|---|---|---|
|
The simplest method for automating LDAP synchronization is to set up a nightly job using an automation tool, such as Jenkins. You can trigger LDAP synchronization by using a cURL command, for example, to call the User Administration REST API (/pstsec/api) endpoint:
...