#5992 [RFE] WinSync: Filter AD users
Opened 7 years ago by pvoborni. Modified 7 years ago

RFE for following use cases:

  1. User Importing
    We are not able to use cross-realm trusts because we can not create multiple domains. WinSync is not desirable because it does not support any type of filtering. We imported about 10,000 users that we did not need. These were just website accounts. We only need to import users that need access to the OS. I also need to be able to delete users in IDM without deleting them in AD. In our case, any user in the Windows AD group ?PROD? needs to come into IDM.

  2. User Mapping
    In AD, we can have have multiple user accounts for a given user. One is the administrative account. The other is a non-administrative user. In the Linux world, There should only be one user. There needs to be a way to ?link? these accounts to allow the certificate for one user to be available to the other user account. I was thinking that we could enter the SAMAccountName of the primary account into one of the other AD fields for any supplementary accounts. This way, IDM could know to not import the duplicate account but could add the additional certificate to the primary account.


Metadata Update from @pvoborni:
- Issue assigned to someone
- Issue set to the milestone: Future Releases

7 years ago

Login to comment on this ticket.

Metadata