Manualshelf

HP Intelligent Management Center v5.1 TACACS+ Authentication Manager Administrator Guide

ManualsBrandsHP ManualsComputer AccessoriesHP IMC TACACS+ Authentication Manager additional 5000-node E-LTU
81828384858687888990
83
Deleting an LDAP server
Deleting an LDAP server removes the association between TAM and the LDAP server. You cannot delete
LDAP servers that are assigned to synchronization policies.
To delete an LDAP server:
1. Click the Service tab.
2. Select TACACS+ AuthN Manager > LDAP Service > LDAP Servers from the navigation tree.
The LDAP Server List displays all LDAP servers.
3. Click the Delete icon for the LDAP server you want to delete.
A confirmation dialog box appears.
4. Click OK.
Managing LDAP synchronization policies
An LDAP synchronization policy specifies the way you synchronize user data from an LDAP server to TAM,
the scope of user data to be synchronized, and the way user data is handled on TAM. Users
synchronized from the LDAP server become device users in TAM.
Viewing the LDAP synchronization policy list
To view the LDAP synchronization policy list:
1. Click the Service tab.
2. Select TACACS+ AuthN Manager > LDAP Service > Sync Policies from the navigation tree.
The Sync Policy List displays all LDAP synchronization policies.
Sync Policy List contents
Policy NameLDAP synchronization policy name. Click the name link of a policy to enter the
policy details page. For more information, see "Viewing LDAP synchronization policy details."
Server NameName of the LDAP server that is associated with the synchronization policy.
Click the name link of an LDAP server to view its details. For more information, see "Viewing
LDAP server details."
Device User GroupDevice user group to which users bound with the synchronization policy
are assigned.
Auto SynchronizationIf this option is enabled (Yes), TAM automatically executes the
synchronization policy every day as scheduled (3:00 am by default according to the IMC
server time). If this option is disabled (No), TAM performs synchronization on an as needed
basis. The automatic execution time depends on the system parameter LDAP Synchronization
Time. For more information about configuring system parameters, see "Configuring system
parameters."
On-Demand SyncIf this option is enabled (Yes), TAM synchronizes a new user from the LDAP
server only after the user passes authentication. If this option is disabled (No), TA M
synchronizes all matching users from the LDAP server. You can enable this option to save user
account licenses and to improve synchronization efficiency.
LDAP UserClick the icon for a synchronization policy to view users bound to the policy.
For more information about LDAP users, see "Viewing LDAP user details."