Importing users and groups into ACL Role Manager

The ACL Role Manager gets LDAP user and group configurations through the security server.

The security server retrieves user/group information from the LDAP server according to its LDAP configuration in advanced security. A search filter is constructed internally based on the LDAP configuration.

When ACL Role Manager requests a user list or group list, the security server sends it back.

  1. Configure LDAP on the LDAP tab of the Server Administration > Security Server tab.
    1. Specify a host name.
    2. Use the defaults for Encryption Method and Authentication Method.
    3. Specify the Default Domain Name.
    4. Specify the Manager Distinguished Name.
      The Manager Distinguished Name must be in CN=XXX,OU=XXX,DC=XXXX format.
      Depending on how you define your LDAP structure, CN means common name, OU means organization name, and DC means domain component.
      There is no length limit.
    5. Specify the Manager Password and confirm it.
    6. In the Synchronization section, use the defaults for Mode and Cron.
  2. Click Advanced and configure classes and search bases for user, group, and server.
    Ensure the class and search bases are correct for each type; otherwise, the search result could be empty.
  3. Click OK on the LDAP Advanced Configuration dialog box.
  4. Click Test in Server Administration.
    Verify that Query User Result and Query Group Result are not empty. They should show the search base and search filter for user and group, respectively.
  5. Click Save, and restart the security server. The security server must be restarted after making LDAP configuration changes.
  6. Open the ACL Role Manager. In this dialog box, you can import user and groups.