I know I have already set up few LDAP to ITG imports in the past ..but for some reasons I am having brain farts today :-(
Can someone Please help me with mapping User's LDAP Manager value to ITG.?
My LDAP User imports keeps on failing because the User's "Manager" value which is in DN format (CN=LName\, FName,OU=Users,OU=Place,DC=ad,DC=company,DC=com).
User Error:INVALID_MANAGER:The manager username or logon identifier CN=LName\, FName,OU=Users,OU=Place,DC=ad,DC=company,DC=com is not an existing user, and also is not a new user being created by this import group.
Hi Penoles, Celil, Sorry for late response here, surprisingly I never got notified about these updates :-( .. I guess even Forum notification was on Labor day break :-)
Penoles, Can you please clearify a litte more please. Are u suggesting to map User's LOGON_IDENTIFIER instead of USERNAME ?
Celil, What do you mean by field registration number ? How is that stored in LDAP and how are you mapping that to ITG ?
As I mentioned guys, I had this going in this exact system a couple of years ago with very minor difference in mapping parameter. But unfortunately those files got wiped off during clones and my memory is not helping me :-( .. ...
...I would appreciate any tips you guys can provide...
Hi Raj, I mean keep current USERNAME map and add map for LOGON_IDENTIFIER with USER DN. Then the MANAGER_LOGON_IDENTIFIER could match correct user by LOGON_IDENTIFIER as they are both in DN format, Users still use their USERNAME to logon ppm.
As you said, normally, manager value in LDAP stored as CN=LName\,FName,OU=Users,OU=Place,DC=ad,DC=company,DC=com. But PPM can not read it. You can add LDAP, extension fields namely extensionAttribute1,2,3 and so on. You must create an extension field to simulate manager value. Then use this field in ldapattribute.conf file as MANAGER_USERNAME=extensionAttribute7.
PS: If the post resolves your issue, please KUDOS the professionals and mark it as Accepted Solution.
IT Governance Professional & PPM Solution Architect
Actually we don't control any changes on the LDAP side and are required to use the Data as is.....
My Memory switch just turned on :-) ...and Now I remember the "small" attribute mapping change that I had done before which helped us to use the DN value .. instead of "manager" I needed to map the to "ermanager". It was that simple :-)
Here is what I did and now its working wonderfully !! Hopefully this is going to be helpful for some other people :-)