{{ secondMenu.name }}
When the IAG works with a database or the H3C CAMS system for authentication, the automatic user synchronization function synchronizes users in the database or CAMS system to the local organization structure on the IAG.
Users and user groups in the database can be automatically synchronized to the local organization structure on the IAG. You need to set the synchronization interval.
3.5.1.5.1.1 Add Sync User Accounts from the Database
A synchronization policy involves synchronization parameters. The configuration procedure is as follows:
Set the policy name and policy description. Next, select Enable auto user sync and set the synchronization interval. The above figure shows that the synchronization interval is set to 24 hours.
In Database Server, select the database server set in Step 1 and enter the SQL statement to obtain user information and a group path separator. The data table uses the group path separator to separate a group from a child group. In this example, the hyphen (-) is set as the separator. If there are only level-1 groups and no child groups, leave the Group Path Separator parameter blank. In Local Group Path, specify the path for saving the synchronized user information on the IAG.
If Allow multiple users to log in with an account concurrently is selected, accounts synchronized to the IAG are public accounts. A public account can be used for login on multiple computers. If this option is not selected, synchronized accounts are private accounts and can be used for login on a single computer at a time.
Click Test Validity to list the information about obtained users and user groups and the SQL statement execution time.
3.5.1.5.1.2 Delete Sync User Accounts from the Database
Go to the User Sync page, select a synchronization policy, and click Delete. After a synchronization policy is deleted, the users and user groups that are synchronized to the IAG by using this policy remain unaffected.
3.5.1.5.1.3 View Synchronization Reports
The IAG generates a synchronization report each time synchronization is performed. Click Sync History. On the Sync History page, select a synchronization report and download it.
Users and user groups in the H3C CAMS system can be automatically synchronized to the local organization structure on the IAG. You need to set the synchronization interval.
3.5.1.5.2.1 Add Sync User Accounts from H3C CAMS Server
A synchronization policy involves synchronization parameters. The configuration procedure is as follows:
Set the policy name and policy description. Select Enable auto user sync and set the synchronization interval. As shown in the above figure, set the synchronization interval to 24 hours.
In H3C CAMS Server, select the H3C CAMS server in step 1.
In Local Group Path, specify the path for saving the synchronized user information on the IAG.
If Allow multiple users to log in with an account concurrently is selected, accounts synchronized to the IAG are public accounts. You can use a public account to log in to multiple computers. If this option is not selected, synchronized accounts are private accounts and can be used for login on a single computer at a time.
3.5.1.5.2.2 Delete Synchronization Policies
Access the User Sync page, select a synchronization policy, and click Delete. After a synchronization policy is deleted, the users and user groups that are synchronized to the IAG by using this policy remain unaffected.
3.5.1.5.2.3 View Synchronization Reports
The IAG generates a synchronization report each time synchronization is performed. Click Sync History. On the Sync History page, select a synchronization report and download it.
{{ $t('index.defaultHeader.chromeBrowserTip') }}