Querying ldap synchronization policies – H3C Technologies H3C Intelligent Management Center User Manual
Page 376
358
{
Server Name—LDAP server name associated with the LDAP synchronization policy name. This
parameter displays detailed LDAP server information.
{
Sync Object—User type of the synchronization policy:
−
Access Users—The policy synchronizes users from the LDAP server to UAM as access users.
−
Device Users—The policy synchronizes users from the LDAP server to UAM as device
management users.
{
Service Group—Service group that the policy is assigned to. It is always the same as the service
group that the LDAP server is assigned to.
{
States—Validity of the synchronization policy: Valid or Invalid.
{
Synchronization Priority—Priority of the LDAP synchronization policy. Synchronization policies
with higher priority values are executed first in a scheduled synchronization task.
{
Synchronize Users as Needed—You can enable this option to save user account licenses.
−
If this option is enabled, UAM synchronizes a new user from the LDAP server only after the
user passes authentication.
−
If this option is disabled, UAM synchronizes all the matching users from the LDAP server.
{
Bind User—Displays a Bind User icon or empty.
−
If the Sync Object is Access Users, this field provides a Bind User icon . Click the icon to
view users that are bound to the policy. For more information about managing LDAP users,
see "
."
−
If the Sync Object is Device Users, this field is empty, because UAM does not support
manually binding device management users with LDAP synchronization policies.
{
Synchronize—Click the Synchronize link for a synchronization policy link to execute the policy.
{
Modify—Click the Modify icon to enter the page for modifying the LDAP synchronization
policy.
{
Delete—Click the Delete icon to delete the LDAP synchronization policy.
Querying LDAP synchronization policies
1.
Access the LDAP synchronization policy list page.
2.
Specify one or more of the following query criteria in the Query Sync Policies area:
{
Policy Name—Enter the LDAP synchronization policy name. UAM supports fuzzy matching for
this field. For example, if you enter lab, all LDAP synchronization policies with names containing
lab are queried.
{
Server Name—Select the LDAP server from the list.
{
User Group—Click the Select User Group icon . The Select User Group window appears.
Select a group and click OK. You can select only one user group for query. Since device users
cannot be grouped, if you select a user group, any synchronization policy with the Sync Object
set to Device Users cannot be queried.
{
Sync Object—Select a user type from the list. Options include Access Users and Device Users.
{
Service Group—Select from the list a service group configured in UAM.
Empty fields are ignored.
3.
Click Query.
The synchronization policy list displays all LDAP synchronization policies that match the query
criteria.