Although primarily focusing on Microsoft Active Directory, User Management Resource Administrator (UMRA) can also manage any other directory service, as long as the directory service supports the Lightweight Directory Access Protocol (LDAP).
Examples of the directory services that can be managed with UMRA include Novell eDirectory, Linux OpenLDAP and Microsoft's Active Directory.
The main reasons to use the LDAP functions of UMRA deal with the integration of networks with hybrid directory services. The UMRA LDAP functions include:
Creating user accounts and setting up all attributes
Managing group memberships
Resetting user account passwords
Deleting user accounts
Managing all other directory service objects
With the UMRA LDAP functions, multiple directory services can be updated by executing a single task. Example: When a form (of UMRA Forms and Delegation) is submitted, a user account can be created in Microsoft's Active Directory and Novell eDirectory in a single task.
The UMRA LDAP functions are most often deployed for the following tasks:
Synchronization of Active Directory updates with other directory services (Novell eDirectory, LINUX OpenLDAP);
Synchronization of database system updates with (multiple) directory services;
Helpdesk task delegation to manage the user account life cycle process, e.g. create user accounts, reset passwords etc. for hybrid directory services networks.
The LDAP functions of UMRA support both secure and non-secure LDAP implementations. Secure LDAP is implemented using SSL. The SASL authentication methods are not supported in UMRA. For more detailed information, see the document Managing LDAP directory services with UMRA on our website.
See also:
Managing LDAP Directory Services using UMRA - Concept
Script Action: Setup LDAP session
Script Action: Load LDAP modification data
Script Action: Add directory service object (LDAP)
Script Action: Modify directory service object (LDAP)