Difference between revisions of "LDAPS User Sync Profile"
Jump to navigation
Jump to search
Jrobertson (talk | contribs) |
|||
(10 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
− | == Base Settings == | + | LDAPS User Sync Profiles are used to process users from Active Directory (AD) and put them in the dashboard |
+ | ==Minimum requirements for a user to be synced from AD to Cloudwork== | ||
+ | Each user that needs to be synced into Cloudwork require the following attributes in AD: | ||
+ | *Givenname | ||
+ | *Surname | ||
+ | *Samaccountname | ||
+ | *Mail | ||
+ | |||
+ | ==Information and Settings to have ready before creating sync profile== | ||
+ | ===Directory Configuration=== | ||
+ | In your directory: | ||
+ | *Open your firewall and allow IP ranges from [https://wiki.studentnet.net/index.php/IP_Range#Cloudwork_IP_Range here] | ||
+ | *Create a user in your directory which has read permissions and save the following details about newly created user: | ||
+ | **Username: | ||
+ | **Password: | ||
+ | **Directory Location: | ||
+ | *Have the LDAP path for the container you want synced: | ||
+ | *Note down the IP address your directory server is on: | ||
+ | *Note has the mail attribute populated with the user's email address? If not where is this stored? | ||
+ | |||
+ | ==Creating a the LDAP User Sync Profile== | ||
+ | #In the '''Cloudwork Dashboard'''>'''Sync Profile'''>'''New Sync Profile'''>'''LDAP Users Sync Profile''' | ||
+ | #Fill in the form: | ||
+ | #*'''Description''': Name or Description of Sync profile | ||
+ | #*'''Ldap User''': Directory and username of newly created user | ||
+ | #*'''Ldap Password''': Password of newly created user | ||
+ | #*'''Search Container''': The LDAP path for the container you want synced | ||
+ | #*'''Role''': Depending on user type, select the appropriate type of '''Teacher''', '''Student''', '''Alum''', '''Staff''', '''Employee''' or '''Parent''' | ||
+ | #Click submit | ||
+ | |||
+ | ==Field Information== | ||
+ | === Base Settings === | ||
{| class="wikitable" | {| class="wikitable" | ||
Line 14: | Line 45: | ||
|- | |- | ||
|[[Image:userldapuser.png]] | |[[Image:userldapuser.png]] | ||
− | |Username to bind to when collecting | + | |Username of user who has read permission to bind to when collecting |
|- | |- | ||
|[[Image:userldappassword.png]] | |[[Image:userldappassword.png]] | ||
− | |Password | + | |Password of user in '''Ldap User''' with read permissions when collecting information from the server |
|} | |} | ||
− | == User Settings == | + | === User Settings === |
+ | |||
+ | (If there is no image for AD Example the attribute is not processed by AD) | ||
{| class="wikitable" | {| class="wikitable" | ||
Line 91: | Line 124: | ||
|} | |} | ||
− | ==Advanced Settings== | + | ===Advanced Settings=== |
{| class="wikitable" | {| class="wikitable" | ||
Line 120: | Line 153: | ||
+ | ===Troubleshooting=== | ||
− | + | {| class="wikitable" | |
+ | |+ style="caption-side:bottom; color:#000000;"|''Troubleshooting'' | ||
+ | |- | ||
+ | ! style="color:black" | Error Message | ||
+ | ! style="color:black" | Troubleshooting | ||
+ | |- | ||
+ | |Error getting last_name for <ldap path> | ||
+ | |make sure users have last name(sn) in their listed attributes | ||
+ | |- | ||
+ | |<Sync Profile Name> could not be processed due to an error: Could not connect to <ldap path> | ||
+ | |Make sure server where directory is is turned on, make sure firewall configuration allows for Cloudwork IP range | ||
+ | __FORCETOC__ | ||
[[Category: Sync Profiles]] | [[Category: Sync Profiles]] |
Latest revision as of 07:01, 25 September 2023
LDAPS User Sync Profiles are used to process users from Active Directory (AD) and put them in the dashboard
Contents
Minimum requirements for a user to be synced from AD to Cloudwork
Each user that needs to be synced into Cloudwork require the following attributes in AD:
- Givenname
- Surname
- Samaccountname
Information and Settings to have ready before creating sync profile
Directory Configuration
In your directory:
- Open your firewall and allow IP ranges from here
- Create a user in your directory which has read permissions and save the following details about newly created user:
- Username:
- Password:
- Directory Location:
- Have the LDAP path for the container you want synced:
- Note down the IP address your directory server is on:
- Note has the mail attribute populated with the user's email address? If not where is this stored?
Creating a the LDAP User Sync Profile
- In the Cloudwork Dashboard>Sync Profile>New Sync Profile>LDAP Users Sync Profile
- Fill in the form:
- Description: Name or Description of Sync profile
- Ldap User: Directory and username of newly created user
- Ldap Password: Password of newly created user
- Search Container: The LDAP path for the container you want synced
- Role: Depending on user type, select the appropriate type of Teacher, Student, Alum, Staff, Employee or Parent
- Click submit
Field Information
Base Settings
User Settings
(If there is no image for AD Example the attribute is not processed by AD)
Advanced Settings
Troubleshooting
Error Message | Troubleshooting |
---|---|
Error getting last_name for <ldap path> | make sure users have last name(sn) in their listed attributes |
<Sync Profile Name> could not be processed due to an error: Could not connect to <ldap path> | Make sure server where directory is is turned on, make sure firewall configuration allows for Cloudwork IP range |