Managing the LDAP Directory Synchronization Service
Configure VIP Enterprise Gateway to synchronize user and administrator records with VIP.
The LDAP Directory Synchronization service lets you automatically synchronize user and administrator records from your user store to the VIP Authentication Service. If you add entries to, or delete entries from a user store that is configured as an LDAP directory, the LDAP Directory Synchronization service automatically adds or deletes these entries in the VIP Authentication Service directory. If you update entries directly in your LDAP directory, you can also configure the LDAP Directory Synchronization to update the VIP Authentication Service. The LDAP Directory Synchronization Service adds, updates, or deletes users and administrators to the VIP Authentication Service based on the membership of the user record in the enterprise user store.
In a simple LDAP Directory Synchronization configuration, all user stores are configured with a single VIP Enterprise Gateway server. For more complex enterprise-level LDAP configurations, see the following resources:
- Symantec VIP Enterprise Gateway Installation and Configuration Guideonline at the Broadcom TechDocs portal.
Access the LDAP Directory Synchronization service from the
User Store > LDAP Directory Synchronization
page. If you have not configured your LDAP Directory Synchronization service yet, you are prompted to configure it and to run a simulation first. You can also revert changes to the user data in the VIP Authentication Service from the simulation page.Once you have configured the service, you can do the following operations from the
LDAP Directory Synchronization
page:- Click the slider at the top of theLDAP Directory Synchronizationtab to start or stop the service.
- ClickEditto modify your LDAP Directory Synchronization service settings.
- ClickStart Simulationto run a simulation of the changes that the LDAP Directory Synchronization will make to your user store or LDAP directory before it makes the changes. You can view the changes to make sure they are correct, or revert to previous versions. You must run a simulation before the service runs for the first time.
- ClickSynchronize Nowto manually synchronize your user store or LDAP directory with the VIP User Service. You should always run a simulation before manually synchronizing with the VIP User Service.
- Click Undo Changes to restore LDAP Synchronization settings and LDAP data to a previous state.