Table of Contents

Search

  1. Preface
  2. Starting Data Archive
  3. System Configuration
  4. Database Users and Privileges
  5. Source Connections
  6. Target Connections
  7. Archive Store Configuration
  8. Datatype Mapping
  9. Database Optimization
  10. SAP Application Retirement
  11. z/OS Source Data Retirement
  12. Seamless Data Access
  13. Data Discovery Portal
  14. Security
  15. SSL Communication with Data Vault
  16. LDAP User Authentication
  17. Auditing
  18. Running Jobs from External Applications
  19. Salesforce Archiving Administrator Tasks
  20. Upgrading Oracle History Data
  21. Upgrading PeopleSoft History Data
  22. Data Archive Maintenance
  23. Appendix A: Datetime and Numeric Formatting
  24. Appendix B: Data Archive Connectivity

Administrator Guide

Administrator Guide

Nested Group Synchronization for Users

Nested Group Synchronization for Users

You can maintain users in nested groups in the LDAP directory service. You may want to use nested groups for organizational purposes and to group similar types of users. Attributes that you maintain at the group level apply to all users within the group.
You may want to group users by the types of privileges they should have in Data Archive. Then, you can assign roles to the group. By default, all users in the group inherit the role assignment. Assigning roles to groups saves time as you avoid individually assigning roles to every user. Note that LDAP security groups are equivalent to Data Archive roles.
Data Archive synchronizes users based on the group that you provide as a parameter when you run the Sync with LDAP Server job. The job reviews all users under the group, including users in nested groups. There is no limit to the number of nested groups that you can have in one group.
For example, you create the following structure in the LDAP directory service:
ILM Users (Parent LDAP Group) ---User 1 (LDAP Member) ---User 2 (LDAP Member) ---ILM Administrator Users (Nested LDAP Group) ------User 3 (LDAP Member) ------User 4 (LDAP Member)
The ILM Users group includes User 1, User 2, and the ILM Administrator Users nested group. The ILM Administrator Users group includes User 3 and User 4.
When you synchronize the ILM Users group, Data Archive synchronizes User 1, User 2, User 3, and User 4.

0 COMMENTS

We’d like to hear from you!