NSP administrators enable LDAP server integration to allow Single Sign-on to the NSP users from their company’s Active Directory. Using this server NSP can also fetch and sync the user details from the organization’s Active Directory. The LDAP server provides two types of sync mechanisms in NSP and they are: Offline Batch and Online. Offline Batch performs schedule based data sync from the LDAP directory replicating the data in the NSP database and only uses the LDAP server for user authentication. The Online mode gets the data in real time from the LDAP server based on user query requirements.
To make LDAP settings go to Configuration> Settings> Account management> LDAP Connections.
Step by step overview on how you set up and run AD-synchronization:
1. Create connection to LDAP Server.
2. Define settings for how to handle inactive users (Optional).
3. Test connection.
4. Create one or more LDAP server jobs; sync set-ups.
5. Add the following to created LDAP server jobs
a. Group mappings; important
b. Attribute mappings if you want other than standard mappings (Optional).
c. Set if any attributes always are to be excluded when synchronizing (Optional).
6. Run sync- manually or via schedule.
7. If option Auto approved sync not is chosen you manually choose which users to sync.
8. After sync, look at outcome in Sync log.