Managing the LDAP Directory Synchronization Service

Configure VIP Enterprise Gateway to synchronize user and administrator records with VIP.
The LDAP Directory Synchronization service lets you automatically synchronize user and administrator records from your user store to the VIP Authentication Service. If you add entries to, or delete entries from a user store that is configured as an LDAP directory, the LDAP Directory Synchronization service automatically adds or deletes these entries in the VIP Authentication Service directory. If you update entries directly in your LDAP directory, you can also configure the LDAP Directory Synchronization to update the VIP Authentication Service. The LDAP Directory Synchronization Service adds, updates, or deletes users and administrators to the VIP Authentication Service based on the membership of the user record in the enterprise user store.
In a simple LDAP Directory Synchronization configuration, all user stores are configured with a single VIP Enterprise Gateway server. For more complex enterprise-level LDAP configurations, see the following resources:
Access the LDAP Directory Synchronization service from the
User Store > LDAP Directory Synchronization
page. If you have not configured your LDAP Directory Synchronization service yet, you are prompted to configure it and to run a simulation first. You can also revert changes to the user data in the VIP Authentication Service from the simulation page.
Once you have configured the service, you can do the following operations from the
LDAP Directory Synchronization
page:
  • Click the slider at the top of the
    LDAP Directory Synchronization
    tab to start or stop the service.
  • Click
    Edit
    to modify your LDAP Directory Synchronization service settings.
  • Click
    Start Simulation
    to run a simulation of the changes that the LDAP Directory Synchronization will make to your user store or LDAP directory before it makes the changes. You can view the changes to make sure they are correct, or revert to previous versions. You must run a simulation before the service runs for the first time.
  • Click
    Synchronize Now
    to manually synchronize your user store or LDAP directory with the VIP User Service. You should always run a simulation before manually synchronizing with the VIP User Service.
  • Click Undo Changes to restore LDAP Synchronization settings and LDAP data to a previous state.