UMRA Simplifies User Account Management
Complete Linkage with LDAP
The User Management Resource Administrator (UMRA) software from Tools4ever offers a complete interface/linkage with LDAP. With the interface, it is possible to have automatic execution of every desired action on LDAP. Examples of actions are: resetting passwords, removing/adding group memberships, changing (extended) attributes, creating/removing/modifying user accounts, etc. As long as LDAP supports the processing, technically, it is possible to carry out the action via UMRA.
The following automatic links to LDAP are possible:
Bulk Import to LDAP
The UMRA console offers the option of carrying out a bulk import to LDAP via a variety of input formats. Some examples of these formats are: plain text, CSV, XML, Webservice, SOA, SOAP, other LDAP store, ODBC, and Oracle.
Three issues are specified in the UMRA console:
1) What actions have to be carried out on LDAP; this results in a visual script;
2) Where the input will come from (CSV, ODBC etc.);
3) Determining the run mode.
UMRA supports an extensive test mode to check whether the input and actions will produce the right results.
Bulk import on LDAP is particularly attractive for migrations, schools (beginning/end of the school year), bulk creation of new employees, adding a telephone number in LDAP, etc.
Delegated Management to LDAP
The standard management tools for LDAP are limited. The tools do not enforce a standardized method of user account management. Therefore it is only possible to a limited degree to regulate the administrative rights on LDAP, and logging for compliancy is not enforced. UMRA offers a delegated interface (via a set of electronic forms) which allows a helpdesk assistant or other user to work in a secure manner. The helpdesk assistant can only use the forms to manage LDAP. The actual operations are carried out through the link with LDAP where inherent limitations are avoided.
Auto Provisioning to LDAP
Information for managing user accounts in LDAP is often available in a different information source in your organizationís network. An obvious source is the HR system but there could also be a different source such as an LDAP store, flexpool (temporary employees) and/or a planning system. UMRA detects the change for example a new contract in the source system and converts this, through a series of UMRA actions, into the required additions in LDAP. UMRA ensures that all the changes are carried out 100% automatically and in doing so, takes care of issues such as: unique naming, group membership and notifications to relevant managers
There is often a need within an organization to allow employees themselves to modify their own details in LDAP. It is important here that employees may only modify their own details as well as a restricted number of fields (attributes). Alongside being able to modify their own details, it is also possible that employees are able to view the details (name, e-mail address, telephone number etc.) of all users.