LDAP groups are objects in an LDAP directory such as NetIQ eDirectory or Microsoft Active Directory that can be created to facilitate easier administration of LDAP users who have common needs or who share a common role or responsibility.
LDAP groups are administered in the associated LDAP directory. eDirectory groups are administered in iManager. Active Directory groups are administered in the Microsoft Management Console (MMC). GroupWise includes plugins for eDirectory and for MMC to enable LDAP administrators to add new LDAP groups to GroupWise in the administrative environment with which they are familiar. For information about installing and using the GroupWise plugins, see Section 2.7, Using an LDAP Directory Management Tool for Adding LDAP Users and Groups to GroupWise.
The name that you give to the LDAP Group object in the LDAP directory management tool becomes the name by which it is displayed in the GroupWise Address Book. You make an LDAP group available in your GroupWise system by assigning it to a post office. Regardless of the post office where the LDAP group is assigned, all GroupWise users can use it when addressing a message.
After you add an LDAP group to GroupWise, you cannot change group membership in the GroupWise Admin console. Instead, you must use the same LDAP directory management tool to modify group membership as you used to create the LDAP group. Changes made in the LDAP management tool synchronize to GroupWise during the next scheduled LDAP sync.
Apart from modifying group membership, a group that was originally an LDAP group and a native GroupWise group can be managed essentially the same.