When you synchronize data from the Lightweight Directory
Access Protocol (LDAP) directory server to the system, the application
server synchronizes on the common name (cn) attribute. The attribute
is the Full Name field in the LDAP directory
server. You can change the default values of the parameters for synchronization
if necessary.
About this task
If you want to synchronize from the user logon name and log
on to the system, the user name attribute must be correctly mapped.
You must map the attribute in the LDAPSYNC cron task parameters, the
VMMSYNC cron task parameters, and in the application server. The field
length in the directory must be the same value as the field length
in the system tables. If this value is smaller in the system tables,
you can increase the maximum length of the field in the Database Configuration
application.
Procedure
- Open the Cron Task Setup application and select the appropriate
cron task:
Option |
Description |
If you use Active Directory and
this directory is the only directory you use regardless of the application
server you use |
Select the LDAPSYNC cron task |
If you use Active Directory,
a directory platform or directory instance, and another directory,
only Virtual Member Manager (VMM) and IBM® WebSphere® Application Server support
these directories. |
Select the VMMSYNC cron task |
- On the Parameters tab of the Cron
Task tab, select the UserMapping parameter and review
the value.
- If the value of the UserMapping parameter is smaller in
the system tables, select the LDAPSYNCCRONPARM object in the Database
Configuration application.
- On the Attributes tab, select the
UserMapping attribute, increase the length of the field, and save
the attribute.
- Repeat steps 5 and 6 for the VMMSYNCCRONPARM object.
What to do next
You must ensure the cron tasks are active and then synchronize
the data.