PhenixID

Create LDAP Object

Version: 2.5

Category: Output

Extended Category: LDAP

Action Package: Standard Actions

Description

Create a new LDAP Object

Parameter

Description

Example

LDAP Data Source:        

Select the LDAP data source where to create LDAP objects.

Microsoft Active Directory

Session Object DN Attribute:

Select the attribute that contains the DN. Default (empty) is the session object name.

AD-DN

Only New Objects (true/false):

If only session objects flagged as new should be created. Default: true.

false

Exclude Session Attributes:

Select the attributes NOT to include when creating the object. Leave blank to ignore.

telephoneNumber,carLicense

Include Session Attributes:        

Select the attributes to include when creating the object. Use | to give the attribute another name with ldapAttributeName|sessionAttributeName.  Leave blank to ignore.

unicodepwd,objectclass,company,
sAMAccountName,cn,givenName,
sn,mail,userPrincipalName,
userAccountControl

Must have Filter Criteria:

Create the object if the filter matches. Usage: attributename=RegExpression. Leave blank to ignore.

samaccountname=[A-Z]

Reset isNew Flag After Create (false/true):

If an object has been created, unselect the isNew flag. Default: false.

true

Stop on Failure (false/true):

If a failure to create an object should cause the action to stop (false/true). Default: false.

true

(Optional) Error Message Attribute:

If a failure occurs, place any error message into this attribute. Leave blank to ignore

carLicense

Use Cases

Example 1: Create group

Create a LDAP Group

Parameter

Value

LDAP Data Source:        

AD

Session Object DN Attribute:

AD-DN

Only New Objects (true/false):

true

Exclude Session Attributes:

[BLANK]

Include Session Attributes:        

cn,url,objectClass,sAMAccountName,
admindisplayname,admindescription,
description

Must have Filter Criteria:

[BLANK]

Reset isNew Flag After Create (false/true):

[BLANK]

Stop on Failure (false/true):

[BLANK]

(Optional) Error Message Attribute:

[BLANK]

Create an Active Directory group if not exist. Placeholder information is set from session attribute AD-DN. cn, url, objectClass, sAMAccountName, admindisplayname, admindescription and description will be saved from session.

DISCLAIMER
Information provided in this document is for your information only. PhenixID makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners.

The origin of this information may be internal or external to PhenixID. PhenixID makes all reasonable efforts to verify this information.

PhenixID - support.phenixid.se