What are the rights needed by the LDAP admin for Data Synchronizer

  • 7006841
  • 14-Sep-2010
  • 10-Dec-2013

Environment

Novell Data Synchronizer
Novell Data Synchronizer Connector for Mobility
Novell Data Synchronizer Connector for GroupWise
Novell Data Synchronizer Connector for Microsoft SharePoint
Novell Data Synchronizer Connector for Salesforce.com
Novell Data Synchronizer Connector for SugarCRM

Situation

What are the rights needed by the LDAP admin for Data Synchronizer

Resolution

User that is used as LDAP admin needs the Read rights to the following attributes for the user
CN
Given Name
Surname
dn
Password Expiration Time
 
User that is used as LDAP admin needs the Read rights to the following attributes for the group
CN
dn
Member
 
User that is used as LDAP admin needs Browse right for Entry Rights
 
Follow the steps listed below
  1. Launch ConsoleOne.
  2. Right Click on the top most container and click "Trustees of this Object ".
  3. Click "Add Trustee... ".
  4. Browse to the LDAP user and click OK.
  5. Highlight [All Attributes Rights] and click Delete Property.
  6. Click Yes to confirm.
  7. Make sure[Entry Rights] is still there and Browse is selected and "Inheritable" check box is selected.
  8. Click Add Property.
  9. Select "Show all properties".
  10. Add CN , Given Name , Surname , dn , Member, Password Expiration Time attributes.
  11. Give Read rights to these attributes and select "Inheritable".
  12. Click OK.
  13. Click Apply and Close.

    iManager can also be used to give the above rights.