Mapping LDAP and SBM User Information

The User Map tab enables you to map user account attributes defined in the LDAP schema to SBM user account attributes.
Note: Use the Contact Map and Contact Import tabs to import and update Contact records that are not associated with a user account.

You can also map LDAP account attributes to a user's Contact record, if applicable. The mapping assignments defined on the User Map tab apply to importing and updating user accounts. For details, refer to Mapping LDAP Users and SBM Contacts.

Important: You must configure LDAP server settings in SBM Configurator before you can map LDAP user attributes.

To map LDAP user attributes to SBM user attributes:

  1. From the Options menu, select LDAP Setup & Tools. The LDAP Setup & Tools dialog box opens to the General tab; select the User Map tab.
  2. The Map LDAP User Attributes column initially does not contain any LDAP user account attributes. Click the Refresh LDAP List button to populate the column with LDAP attributes and sample data. The following attributes are listed for LDAP and SBM user accounts:
    • LDAP User Attributes – Only LDAP attributes that contain values are listed for each sample user. For example, if a sample user account does not have a value for the Title attribute in LDAP, this attribute is not listed. For best results, select a sample user account that has values defined for all LDAP attributes you want to map to SBM user attributes. You can also click the Refresh LDAP List button to repopulate the Map LDAP User Attributes column with other LDAP user accounts. User accounts are listed based on the order they are stored in the LDAP directory.

    • SBM User/Contact Attributes – This column lists the following SBM user account attributes:

      • Four user account attributes (login ID, name, telephone, and e-mail)

      • All non-system, fixed-length Text fields in the Contacts table

      • The Companies system field from the Contacts table

      • Resource attributes, including Job Functions and Skills.
      Note: User accounts must have a login ID and name. If an imported user account does not contain a name value, the LDAP login ID value is added as the user's name.
  3. Select an LDAP user attribute and an SBM user attribute that you want to map, and then select the right arrow button. A checkmark is placed next to the LDAP attribute in the LDAP column, and the attribute is listed in the LDAP area of the SBM User/Contact Attributes column.
    Tip: You can map attributes from multiple LDAP accounts, if necessary. To do this, map the attributes from the sample user account, as described in step 2. If this account does not contain all the attributes you need, click the Refresh LDAP List button to display another LDAP account. Map attributes as needed from this account, and continue to click the Refresh LDAP List button until you have mapped all necessary attributes.
  4. To remove an attribute mapping assignment, select the a row in the SBM User/Contact Attributes list, and then click the left arrow button.
  5. Select single or multiple LDAP user attributes that should be examined by SBM in order to create potential groups when new users are automatically created. Click the right arrow button to add them to the Group Attributes field. For further detail, see Group Attributes.
  6. In the Group Query Parameters field, enter the specific parameters from the attributes listed in Group Attributes that might contain potential groups. For further detail and examples, see Group Query Parameters.
  7. Click OK to save your settings and exit the dialog box. Click Apply to save your settings and continue working in the LDAP Setup & Tools dialog box.