VIP (Validation ID Protection)

 View Only

  • 1.  LDAP Configuration for VIP

    Posted Aug 31, 2017 04:00 PM

    Hi All,

    I configured one user store in EGW Server and the AD filter is to read all the users from AD. So, it synced all the non-human IDs into VIP manager(which of no use) and non-human IDs don't have the credential IDs assigned to them. Hence, I would like to remove the non-human IDs from VIP manager as it is consuming the licenses.

     

    Current Filter in User Store: (&(&(&(objectClass=user)(objectCategory=person))(sAMAccountName=%s))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))

     

    What are the additional filters that I need to apply in order to read only active/enabled users and the userIds that start any letter eg: 'A', eg: ID abcd1234?

     

    Please assist.

     

    Note: I have configured around 8 users stores for different other purposes. I am assuming the user store which has a monitor and cloud symbol is the one that is being used by LDAP Sync server in EGW.

     

    Thanks,

    Sadath.



  • 2.  RE: LDAP Configuration for VIP

    Broadcom Employee
    Posted Aug 31, 2017 07:26 PM

    Hi Sadath,

    If you select the DELETE option in your settings, then set your filters correctly, those users will be deleted, and the desired users will remain. This is the recommended method of deleting users. Always do a simulation and review the simulation log before doing the actual sync. This will tell you what will happen during the actual sync.

    If that method is not possible, please contact support for an alternative process.