Hello,

I would like to present in this post, the LDAP servers configuration in Documentum Administrator (DA) and the dm_LDAPSynchronization job.

Creation of LDAP server configuration:

  1. Go to the LDAP Servers node in DA:
  2. Click on the FILE > LDAP Server Configuration menu:

  3. Fill in the informations concerning the LDAP server:
    Warning: the name of LDAP Server Configuration must be identical to domain name.

    In update mode, the password is necessary in order to modify others informations:
  4. Go on to the Sync & Authentication tab:

  5. Go on to the Mapping tab:
  6. Go on to the Failover tab:

LDAP Synchronisation job : dm_LDAPSynchronization:

  1. Go to the Jobs node in DA:
  2. Go on to the Job Properties:
  3. Go on to the Schedule tab:
  4. Go on to the Method tab:
  5. Go on to the SysObject Info tab:

The job dm_LDAPSynchronization creates item of « dm_job_request » type for the jobs :
+ dm_UserRename : « object_name=’UserRename’, job_name=’dm_UserRename’ » to rename users
+ dm_GroupRename : « object_name=’GroupRename’, job_name=’dm_GroupRename’ » to rename groups

DQL: List LDAP being used to authenticate users

  • Source of Users
    select distinct user_source from dm_user;
    --------------
    user_source
    --------------
    LDAP
    inline password
    ''
    
  • OS Users
    select user_login_name, user_login_domain from dm_user where user_source = ' ';
    ------------------------------------------
    user_login_name | user_login_domain
    ------------------------------------------
    DOCUMENTUM |
    dmadmin | MYDCTMSERVER
    dm_superusers |
    dm_superusers_dynamic |
    dm_browse_all |
    dm_browse_all_dynamic |
    dm_retention_managers |
    dm_retention_users |
    ...
    
  • LDAP Users
    select user_login_name, user_login_domain from dm_user where user_source = 'LDAP';
    ------------------------------------------
    user_login_name | user_login_domain
    ------------------------------------------
    myuser1 | my-ad
    myuser2 | my-ad
    myuser3 | my-ad
    myuser4 | my-ad
    myuser5 | my-ad
    myuser6 | my-ad
    ...
    
  • Inline Password Users
    select user_login_name, user_login_domain from dm_user where user_source = 'inline password';
    ------------------------------------------
    user_login_name | user_login_domain
    ------------------------------------------
    mytestuser1 |
    mytestuser2 |
    dmadmin_TEST |
    testread |
    ...
    

Best regards,

Huseyin OZVEREN