Synchronizing with User Authentication Systems

You can set up the application to synchronize data between its database and your external user identity system such as LDAP or Active Directory. This feature helps you ensure that the local application database contains only data related to users who are in your external user identity provider. Configure this feature in the Admin Console.

After you enter values to configure this feature, you can click the Run Synchronization Task Now button to go ahead and synchronize.

Fastpath: Admin Console: People > Settings > User Data Synchronization Settings

You can use the following table to complete the User Data Synchronization Settings page. Some fields are not visible until you select a previous field.

Setting Description
Scheduled sync task enabled? Synchronize with the user identity system nightly.
Synchronize user relationships? Include user relationships in the data that's synchronized. For more on relationships, see Configuring User Relationships.
Managing LDAP attribute name Visible when Synchronize user relationships is selected. The name of the LDAP attribute that provides information about user relationships.
Synchronize profile photo? Include profile photos among the data that's synchronized. For more about profiles, see Defining User Profile Templates. You might want to let people maintain their profile photos independently.
User photo LDAP attribute name Visible when User photo LDAP attribute name is selected. The name of the LDAP attribute specifying the user photo.
Last modified LDAP attribute name The LDAP attribute on a user record which typically holds a timestamp of when the user's record was last modified. A common attribute name is "whenChanged".
Synchronize user profiles on login? Synchronize a user's profile information when they log in.
Disable non-administrative user accounts not found in source during synchronization? Disable an account in Jive when the account is not fount in the user identity system. This is useful to help ensure that the enabled accounts in Jive are only those that are also in your system of record.
Disabled user LDAP attribute name Visible when Disable non-administrative user accounts... is selected. The name of the LDAP attribute that indicates whether a user account is disabled.
Disabled user LDAP attribute value (regular expressions allowed) Visible when Disable non-administrative user accounts... is selected. The value of the "disabled" attribute when it indicates that the user account is disabled.