Configuring Extensions – Active Directory Synchronization – HT854

Configure Active Directory Synchronization

• Please make sure you have a single OpenLM Server installation on a central network server.
• Go to the server housing OpenLM Server.
• Windows Start button –> All Programs –> OpenLM –> Configure OpenLM Server – Start here.
• Click LDAP tab –> LDAP folder –> Click Add.
• Input Active Directory Domain, Username, Password and server type. –> Click Apply changes.
• Click Add a Synchronization Definition to this domain.
• Fill in the following details:
  • Synchronization Name –> Fill in a descriptive name.
  • Synchronization Start Node –> Fill in the AD node you want to synchronize.
  • Sync Username attribute –> Select the the username type your AD holds:
    • cn –> Any configuration other than “Active Directory” (i.e. “Novell Directory” or “Apache DS”).
    • sAMAccountName –> (for example “jdoe”) is for Windows server pre-2000 Active Directory versions.
    • userPrincipalName –>(for example john.doe@company.com) is for Windows server post-2000 Active directory versions.
  • User Membership Filter –> select All Users.
  • Sync only active users of licenses –> Check the  box.
  • Set Default Group –> Check the  box.
  • Select the grouping method you want:
    • No Groups –> synchronize only users.
    • Flat –> All users under this node will be grouped under the same group name
    • Hierarchical –> Keep the structural Hierarchichy of the node and its OUs.
    • User Attribute –> Group users by any AD field.
• Click Apply –> Restart Now.
• Windows Start button –> All Programs –> OpenLM –> OpenLM User Interface.
• Open OpenLM User Interface –> Start –> Administration –> Sync Definitions –> Sync Now.
• Continue with configuring other OpenLM Extensions.
• See the Reports of OpenLM.
• Also see full documentation.