Manage LDAP users

• Edit the role of an LDAP user

• Delete an LDAP user from the system

• Synchronize data

• Delete an LDAP user that has been deleted from the LDAP server from the system

Edit the role of an LDAP user

Only LDAP users added to organizations can edit their roles.

 

1. On the top navigation bar, click System.

2. From the left navigation pane, select Access Control > User > LDAP User.

3. Select an LDAP domain, and then select the target LDAP user.

4. For an LDAP user who can be assigned to multiple organizations, Click Organization Management. On the page that opens, click the  icon to edit the role of the user in an organization, and select the target role.

For an LDAP user who can be assigned to only one organization, click Edit Permissions, and then select the target role for the user.

5. Click OK.

Delete an LDAP user from the system

Only LDAP users added to organizations can be removed.

 

To delete an LDAP user who can be assigned to only one organization from the system:

1. On the top navigation bar, click System.

2. From the left navigation pane, select Access Control > User > LDAP User.

3. Select an LDAP domain. Select the LDAP user to be removed, and then click Delete LDAP User.

4. In the dialog box that opens, click OK.

Synchronize data

The system supports only manually synchronizing data from the LDAP server. To prevent user data remnant in the system even if that user has been removed from the LDAP server, first synchronize data from the LDAP server before you configure privileges or resources for a user.

 

1. On the top navigation bar, click System.

2. From the left navigation pane, select Access Control > User > LDAP User.

3. Select an LDAP domain. Click Synchronize Data.

Delete an LDAP user that has been deleted from the LDAP server from the system

If an LDAP user has been deleted from the LDAP server, perform the following task to delete that LDAP user from the system:

1. On the top navigation bar, click System.

2. From the left navigation pane, select Access Control > User > LDAP User.

3. Select an LDAP domain.

4. Select the LDAP user to be removed, and then click Delete LDAP User.

5. Click the chevron icon in the State on Server column for an LDAP user, select Deleted, and then click Confirm.

6. Click Delete in the Actions column for an LDAP user.

7. In the dialog box that opens, click OK.

If the system displays a prompt, the administrator must delete the resources used by the users, and then the user can be deleted. If the system does not display a prompt, the user will be deleted directly. To view the result, click Refresh.