Differences

This shows you the differences between two versions of the page.

--- tutorial:adm:manage_ldap [2019/01/17 12:16]
apeterova uid attribute
+++ tutorial:adm:manage_ldap [2019/08/08 15:18]
poulm [Provisioning]
@@ Line 13: / Line 13: @@
 Thereafter fill important fields.
-**Example configuration for our local LDAP:**
+**Example configuration for our local LDAP:** TODO
 <note important>
@@ Line 29: / Line 29: @@
   * Set all attributes as **Able to read**
-//Example scheme://
+//Example scheme:// TODO
@@ Line 43: / Line 43: @@
 At first set:
-  * **Operation type:** Synchronization
+  * **Operation type:** Provisioning
   * **Object name:** \_\_ACCOUNT\_\_
   * **Entity type:** Identity
-  * As **Mapping name** set whatever you want to, for example Synchronization of users.
+  * As **Mapping name** set whatever you want to, for example Provisioning of users.
 Then map all columns as entity attributes as you can see it on picture below. Just **\_\_NAME\_\_** set as identifier.
@@ Line 67: / Line 67: @@
 You can leave the rest of configuration at the default values.
-//Example provisioning results://
+//Example provisioning results:// TODO
+===== Create LDAP role in IdM =====
+To provision an account to LDAP, one must create a role for the system with LDAP provisioning mapping.
+  * Create a role e.g. "LDAP - user" and save it
+  * Go to System tab on role detail and add a system LDAP created in this tutorial and save.
+To provision a user to LDAP, assign them a role "LDAP - user". The provisioning will be provided as soon as the role is assigned to the user. The state of the provisioning you can check at the user profile detail at the tab "provisioning".