Hello,

I would like to present in this post, the LDAP servers configuration in Documentum Administrator (DA) and the dm_LDAPSynchronization job.

Creation of LDAP server configuration:

  1. Go to the LDAP Servers node in DA:
  2. Click on the FILE > LDAP Server Configuration menu:

  3. Fill in the informations concerning the LDAP server:
    Warning: the name of LDAP Server Configuration must be identical to domain name.

    In update mode, the password is necessary in order to modify others informations:
  4. Go on to the Sync & Authentication tab:

  5. Go on to the Mapping tab:
  6. Go on to the Failover tab:

LDAP Synchronisation job : dm_LDAPSynchronization:

  1. Go to the Jobs node in DA:
  2. Go on to the Job Properties:
  3. Go on to the Schedule tab:
  4. Go on to the Method tab:
  5. Go on to the SysObject Info tab:

The job dm_LDAPSynchronization creates item of « dm_job_request » type for the jobs :
+ dm_UserRename : « object_name=’UserRename’, job_name=’dm_UserRename’ » to rename users
+ dm_GroupRename : « object_name=’GroupRename’, job_name=’dm_GroupRename’ » to rename groups

DQL: List LDAP being used to authenticate users

  • Source of Users 
    select distinct user_source from dm_user;
--------------
user_source
--------------
LDAP
inline password
''
  • OS Users 
    select user_login_name, user_login_domain from dm_user where user_source = ' ';
------------------------------------------
user_login_name | user_login_domain
------------------------------------------
DOCUMENTUM |
dmadmin | MYDCTMSERVER
dm_superusers |
dm_superusers_dynamic |
dm_browse_all |
dm_browse_all_dynamic |
dm_retention_managers |
dm_retention_users |
...
  • LDAP Users 
    select user_login_name, user_login_domain from dm_user where user_source = 'LDAP';
------------------------------------------
user_login_name | user_login_domain
------------------------------------------
myuser1 | my-ad
myuser2 | my-ad
myuser3 | my-ad
myuser4 | my-ad
myuser5 | my-ad
myuser6 | my-ad
...
  • Inline Password Users 
    select user_login_name, user_login_domain from dm_user where user_source = 'inline password';
------------------------------------------
user_login_name | user_login_domain
------------------------------------------
mytestuser1 |
mytestuser2 |
dmadmin_TEST |
testread |
...

Best regards,

Huseyin OZVEREN