MicroStrategy ONE
Add OpenLDAP Information to MicroStrategy Identity and Synchronize Users
- Return to the Identity Agent configuration page in MicroStrategy Identity Manager. When the Identity Agent successfully connects to your OpenLDAP server, the status displays as connected. Click Next.
- In the Root field, enter the LDAP root configuration for OpenLDAP system. This enables MicroStrategy Identity to look for groups and organizational units to synchronize to your Identity Network. For example:
OU=Example Organization,DC=DomainController3,DC=DomainController2,DC=DomainController1
. - Click Next.
- You must map the user information in your OpenLDAP system to user information that is synchronized with your Identity Network. To do this, for each User Info value, select the OpenLDAP field that corresponds to that value by choosing the field from the Available OpenLDAP Attributes drop-down list, as follows:
- LDAP Info: The LDAP keys used to integrate your users with your network. The LDAP keys provided here are the keys that you want MicroStrategy Identity to obtain. Separate each value with a comma. For example,
givenName,cn,sn,mail,title,memberOf
. - First Name: The LDAP key used to store users' first names.
- Last Name: The LDAP key used to store users' last names.
- Full Name: The LDAP key used to store users' full names.
- Title: The LDAP key used to store users' job titles.
- Email: The LDAP key used to store users' email addresses.
- Member Key: The LDAP key used to store the email groups a user is a member of.
- Group Key: The LDAP objectClass name that represents the group entry
- Group Identifier Key: The LDAP key used to store the group names
- User Key: The LDAP objectClass name that represents the user entry
- User Identifier Key: The LDAP key used to store the user identifier
- LDAP Info: The LDAP keys used to integrate your users with your network. The LDAP keys provided here are the keys that you want MicroStrategy Identity to obtain. Separate each value with a comma. For example,
- You can also synchronize additional information from your OpenLDAP system. For example, you can include profile photos, as described in Including Profile Photos in OpenLDAP
- Click Add Another.
- From the User Info drop-down list, select a name for the user information that you want to synchronize. You can also add a custom name. To do this, click Add New. Enter a name for the user information that you want to synchronize, then press Enter.
- From the Available OpenLDAP Attributes drop-down list, select the OpenLDAP field that corresponds to the user information that you want to synchronize. For example, if you add a field for Photo URL, select the OpenLDAP field that contains information about the location of users' profile photos.
- In the LDAP Info field, add the configuration value to the list of values. Separate it from the existing values with a comma. For example,
givenName,cn,sn,mail,title,memberOf,extensionAttribute1
.
- Click Done to save your changes and apply the OpenLDAP mapping information.
- To import users, click Yes.
- Select each group or organizational unit that you want to import into your MicroStrategy Identity Network. All users included in these groups or organizational units will be added to your Identity Network.
- After you have selected the groups or organizational units to add, click Import. Review the confirmation message, then click Yes.
- If you have not configured MicroStrategy Identity to automatically send badges when you import users (see Enabling Automatic Badge Invitations), you must send badges to your users manually:
- Under User Management, click Manage Users.
- Open the Badge Invitation tab and select the check box next to each user who you want to send a badge to.
- Click Send Badges(s) via Email, then click Send on the confirmation message. Badge invitations are sent to the users listed, including links and instructions for users to download the MicroStrategy Badge app.