Details

      Description

      The synchronize direction should be one way and fully in-sync.

      It depends on which to use as main user management.
      If Liferay is acting as the main user management and share to LDAP, it should sync the user data from Liferay to LDAP. (Includes deactive and delete).

      If LDAP is acting as the main user management, the disabled LDAP user should be deactivated in portal as well.

      Thanks.

        Issue Links

          Activity

          Hide
          jonathan.tietz@siemens.com Jonathan Tietz added a comment -

          what about deleted user?
          LDAP is main, if i delete a user in ldap, the user should also be deleted in liferay

          Show
          jonathan.tietz@siemens.com Jonathan Tietz added a comment - what about deleted user? LDAP is main, if i delete a user in ldap, the user should also be deleted in liferay
          Hide
          jtroschke Jürgen Troschke added a comment -

          Following scenario
          Liferay is the leading system (LDAP_EXPORT = enabled)
          Liferay:LDAP configuration: Field liferay:status -> ldap:st

          current state

          • User group assignment is deleted in the Liferay - LDAP as well
          • User disabled (status = 5) - no export to the LDAP (I represent the view, this is a bug)
          • User deleted - no delete in LDAP

          The introduction of the Delete in the LDAP can lead to problems with running applications, so I suggest the introduction of a parameter.
          ldap.user.delete= true|false default false

          Show
          jtroschke Jürgen Troschke added a comment - Following scenario Liferay is the leading system (LDAP_EXPORT = enabled) Liferay:LDAP configuration: Field liferay:status -> ldap:st current state User group assignment is deleted in the Liferay - LDAP as well User disabled (status = 5) - no export to the LDAP (I represent the view, this is a bug) User deleted - no delete in LDAP The introduction of the Delete in the LDAP can lead to problems with running applications, so I suggest the introduction of a parameter. ldap.user.delete= true|false default false

            People

            • Assignee:
              support-lep@liferay.com SE Support
              Reporter:
              michael.chen Michael Chen (Inactive)
            • Votes:
              4 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:

                Development

                  Subcomponents