7.2 Synchronizing LDAP Users

In Section 4.0, Creating Test Users, you populated Active Directory with the users shown in Figure 7-1. (For NODS, the users already exist on the Win2008 server.)

Figure 7-1 Users Created for the Filr Exercises

You import AD users to Filr by setting up LDAP synchronization with Active Directory.

  1. Ensure that the Filr appliance VM has restarted.

  2. Open a browser on your exercise workstation (the win7-win VMm on NODS) and access Filr through the following URL:

    https://Appliance_IP_Address:8443

    For example, on NODS this is

    https://172.17.2.112:8443

  3. If prompted, accept and trust the certificate.

  4. Sign in as User: admin with Password: admin.

  5. When prompted, change the password to novellfilr.

  6. Click admin (upper right), then select Administration Console.

  7. In the left navigation panel under System, click LDAP.

  8. Click Add.

  9. Ensure that the Server Information tab is selected.

  10. Enter the information to connect Filr with your Windows server.

    Field Name

    Value to Enter

    LDAP Server URL

    ldaps://windows-server-IP-address

    On NODS this is

    ldaps://172.17.2.117 or ldaps://win2008.filr-lab.local

    User DN

    IMPORTANT:This is the distinguished name of an Active Directory user who has sufficient rights to access the information for the test users that you created in Section 4.0, Creating Test Users. For example, it could be the user name that you used for that task.

    HINT:If you aren’t certain of the syntax, open a terminal prompt on the server and enter the dsquery user command.

    On NODS this is:

    cn=Administrator,cn=users,dc=filr-lab,dc=local.

    Password

    The password of the user above

    On NODS this is novellfilr.

    Directory Type

    Active Directory

    LDAP Unique Identifier

    objectGUID

    LDAP Attribute for Filr

    sAMAccountName

    For example, the NODS LDAP server information is reflected in the following screen shot.

  11. Select the Users tab, then click Add.

  12. Click the LDAP browse icon.

  13. Browse to testusers and select it.

  14. Click OK.

    The testusers container is added, so click OK.

  15. Select the Synchronization Schedule tab, then select the following options:

    • Enable Schedule

    • Every Day

    • Repeat Every 0.25 Hours

  16. Click the LDAP Servers tab, click the Sync All button, then click OK to save the configuration.

    The nine users in the testusers container are added.

  17. Click Close > OK.

  18. The proxy user is among those added to Filr. However, it is a system-only user.

    Remove the filrproxyuser by doing the following:

    1. In the left frame, click Users.

    2. Select filrproxyuser.

    3. Click Delete, then select Delete user workspaces > Delete user objects > OK.

  19. Click Close.

  20. Do not close the Administration Console. Continue with Section 7.3, Setting Up Users’ My Files Folders.

For complete instructions on using Filr LDAP synchronization, see Synchronizing Users and Groups from an LDAP Directory, in the Novell Filr 1.1 Administration Guide.