The LDAP Directory Synchronize Task imports and synchronizes active directory Active Directory resources such as users, computers, containers, and organizational units into Arellia Management Server (AMS).
...
- In the Security Manager Console, click the Tasks tab.
- On In the file library in the left expand pane, click the Jobs and Tasks section .In the tree and navigate to Jobs and Tasks > Server Tasks > Directory Services > Default Synchronize Directory.
- On In the right pane under Task Status, click the Run Now... button.
- Select a directory to sync and optionally a directory partner and click Run Now to begin.
| Tip |
|---|
When left empty, the default Query value is (|(&(objectclass=user)(objectcategory=person)(!(sAMAccountType=805306370)))(objectcategory=group)(objectCategory=container)(objectCategory=organizationalUnit)). |
Example Queries
Tools
Tools to test your queries are dsquery, ADSIEdit, LDP, LDIFDE. For example using dsquery:
| Code Block | ||
|---|---|---|
| ||
dsquery * domainroot -filter "(&(objectCategory=user)(memberOf=CN=Staff,OU=Operations,DC=companyabc,DC=com))"
|
Examples
Find all users in the domain group All Staff.
| Info | ||
|---|---|---|
| ||
(&(objectCategory=user)(memberOf=CN=All Staff,OU=Operations,DC=companyabc,DC=com)) |
Find all users in the group All Staff, including those in nested groups. This uses the LDAP_MATCHING_RULE_IN_CHAIN matching rule OID.
| Info | ||
|---|---|---|
| ||
(&(|(objectCategory=person))(memberof:1.2.840.113556.1.4.1941:=CN=All Staff,OU=Operations,DC=companyabc,DC=com)) |
Find all users and groups in All Staff, including those in nested groups.
| Info | ||
|---|---|---|
| ||
(&(|(objectCategory=person)(objectCategory=group))(memberof:1.2.840.113556.1.4.1941:=CN=All Staff,OU=Operations,DC=companyabc,DC=com)) |
The default Arellia DSS query:
| Info | ||
|---|---|---|
| ||
(|(objectClass=computer)(objectClass=user)(objectClass=group)(objectClass=groupPolicyContainer)) |
| Anchor | ||||
|---|---|---|---|---|
|