Filr leverages your organization’s identity stores. The following sections identify best practices for ensuring that Filr includes the users and groups that will use its services. For more information on managing users and groups in Filr, see Setting Up User Access to the Filr Site
in the Novell Filr 1.0.1 Administration Guide.
Most Filr deployments use an LDAP source, such as eDirectory or Active Directory, to control user access to the system. However, Google and Yahoo OpenID users can also access Filr, and you can define users by importing profile files or by creating users individually.
Identify the directory services that your organization currently uses.
Note important details about how the directory is configured, such as whether it is split over multiple sites.
Document each LDAP source’s access requirements, such as Access ID, Password, and SSL certificate.
Map out the LDAP structures to ensure that your import operations will find the target users and groups.
Define each required LDAP-import task.
Identify how many LDAP users have file-server-based home directories that will be automatically configured for access through Filr.
Estimate how many files the home directories contain.
Document which users will be created manually and which by importing profile files.
If you know of users who will need access to Filr through Google and Yahoo OpenID, identify these and record their account information.
Calculate and record the number of users and groups that will be imported to Filr.
Sometimes, organizations that utilize both eDirectory and Active Directory as identity stores have accounts for the same individuals in both directory services.
If you are importing users from eDirectory and from Active Directory, be aware that Filr doesn’t allow duplicate user accounts (for example, joe_user in both eDirectory and Active Directory).
Importing a large number of user and group objects takes more time than you might expect. For example, importing 25,000 objects could take from 1 to 4 hours, while importing 100,000 objects will take approximately 24 hours.
Depending on the number of users you need to import, you might need to consider running the process overnight or even over a weekend.