pp108 : Synchronizing Users between Primary Domain Controller (PDC) and LDAP

Synchronizing Users between Primary Domain Controller (PDC) and LDAP
This topic describes the procedure to synchronize users between Primary Domain Controller (PDC) and LDAP.


Management Console allows you to synchronize users in LDAP with the users in the Primary Domain Controller (PDC). This utility is very useful when there is a need to replicate all PDC users in LDAP. This utility also helps in clearing unwanted entries from LDAP.

  1. In a Windows based computer, click Start > Programs > OpenText Process Suite Platform <Version> > <Instance Name> > Tools > Management Console.
    For Linux users
    1. Launch Terminal
    2. CD Process Platform Installation Directory/bin
    3. Execute ./cmc.sh

    The Management Console window appears.

  2. Click User Synchronization utility, type the password in the Logon dialog and click OK. The User Synchronization page is displayed.
  3. Select the check boxes for the user entries which you want to add to LDAP from the Unassigned PDC Users list. You can select all user entries by selecting the Select All checkbox. In Linux, the list of domain users will not be available. Instead, only the list of users in the local machine will be displayed and can be used for synchronization.
  4. From the Default Context list box, select the organization to set the default organization attribute for the authenticated users. The user is added as an organizational user with everyone role in the selected organization.
    Note: Regardless of the authentication type chosen in the Authentication Mode Information screen of the Process Platform installation wizard, importing PDC users will not set the password for the imported users. The Administrator has to do it manually.
  5. If a log file that contains the list of changes made while synchronizing the LDAP and PDC user is required to be maintained, select the Maintain Log File check box.
  6. Click Import. A Confirmation box appears, asking you to confirm the addition of the selected users to the LDAP tree.
  7. Click Yes in the Confirmation box. An Information window appears, displaying the number of domain users imported into LDAP.
  8. Click OK.
    The selected user entries are removed from the Unassigned PDC Users list, are added to the LDAP and are displayed in the LDAP tree.
    Note: The LDAP user entries that are not part of PDC are listed in the Non-PDC User Entries in LDAP pane.