After you configure your Novell iFolder enterprise server, you must specify containers and groups as Search DNs in the LDAP settings. iFolder uses these to provision user and group accounts. You can provision users and iFolders through iFolder Web Admin console. For more information, see the following:
The contexts you plan to use as LDAP Search DNs in the LDAP settings must exist in the LDAP directory; they are not created and configured from within the iFolder plug-in.
For information about configuring user, group, and container objects, see the Novell eDirectory 8.8 Administration Guide.
To enable LDAP attribute-based provisioning, you must Extend the LDAP user schema with the iauxiliary object class with as one attribute. For Active Directory, you must use Active Directory tools to extend User Objects with as an attribute.
Login to iManager using iManager administrator credentials.
Clickicon to open the Object view.
Browse and find the appropriate tree where the desired users are listed.
For more information on this, see the Novell iManager 2.7 Administration Guide.
Click the desired user object you want to extend, and open thewindow, then click .
Clickin the right-side panel that displays the object extensions detail.
In the new page that lists the current auxiliary class extensions, click
From the pop-up window, selectentry, and click .
For more information on this, see the section Roles and Tasks in the iManager Administration Guide.
To addattribute, click the same object to pop-up the window.
Selectto display the object modification details in the right panel.
Under thetab in that page, click the link, and select from the list, then click the arrow mark.
In the pop-up window, provide a value for theattribute and click .
The value can either be the IP address or the DNS name of the iFolder server assigned to this user.
clickto save the modifications.
You can also use the following script to extend the existing user objects or create a new user object with the iFolderUserProvision object class extension.
In the terminal console, type /opt/novell/ifolder3/bin/iFolderLdapUserUpdate.sh.
Type ./iFolderLdapUserUpdate.sh -h <Ldap URL> -d <admin DN> -w <admin password> -u <user DN> [-s <surname>] [-c <user password>] [-i <iFolder Home Server>].
For example: ./iFolderLdapUserUpdate.sh -h ldaps://10.10.10.10 -d admin,o=novell -w secret -u cn=abc,o=novell -s xyz -c secret -i 10.10.10.10.