User Data Synchronization

yuuvis® RAD 9.x »

In yuuvis® RAD, user and user group data can be automatically synchronized with directory services. During synchronization, the yuuvis® RAD organizational structure is synchronized via the operation 'Import organization' by specifying a configuration file with the directory services. The configuration of the operation is carried out via configuration files.

Users and groups can be changed during synchronization. The effects of changes, especially to users in business processes, should be checked.

OPTIMAL SYSTEMS provides the following configuration files for the configuration of the synchronization via the LDAP network protocol in the core service directory standalone\configuration\ldap-ad-sync-templates:

  • ad.properties

    Connection file in which the connection data for the directory service is entered.

    This data is required by both the user import and the group and user import.

  • user-synchronization-config.xml

    File for user import: All users are imported without groups.

  • usergroup-synchronization-config.xml

    File for group and user import: User groups are imported with the users contained within them.

Make the following changes in the configuration files:

User Data Synchronization with Filter Expressions

LDAP synchronization functions can be parametrized with filter expressions via the two configuration files of the user data synchronization. Only data that matches the filters is imported.

The filters are configured under the following xml tag:

<?xml version="1.0" encoding="UTF-8"?>
 <synchronization>
   <configuration type="Active Directory">
     <common>
       <setting name="filterExpression.<Nummer>value="(&(objectCategory=person)(objectClass=user))"/>

Several filter expressions can be entered, but the <Number> must be unique. Example:

<setting name="filterExpression.1" value="(|(objectCategory=organizationalUnit)(objectCategory=group))"/>
<setting name="filterExpression.2" value="(&(objectCategory=person)(objectClass=user))"/>

These filters are called up one by one, and the search results are added up. Special characters must be entered in the XML standard.