Is there a way to auto-archive a user when he/she is detected no longer on LDAP by the sync ?
As user separation is handled via removal of credentials from LDAP, is it possible to trigger an auto-archive of a user when the LDAP sync fails to find this user's existence on LDAP.
|
Accepted answer
I'm not aware of anything automatic. I ended up writing a custom program against the API that reconciles project members against our corporate LDAP & then archives them if no LDAP record can be found.
long TRUONG selected this answer as the correct answer
Comments
long TRUONG
commented Jan 22 '15, 4:20 p.m.
Thx Jeff.
Wonder if it is possible, and your custom program generic enough, for you to share it with the community.
Should this be an enhance request ?
Jeff Care
commented Jan 22 '15, 6:35 p.m.
Unfortunately I can't share it publicly but if you are an IBM employee send me an internal note.
SEC Servizi
commented Jan 23 '15, 5:15 a.m.
if no LDAP record can be found Which APIs are you using to achieve that? Could you post some more info?
Thanks in advance.
Kevin Ramer
commented Jan 23 '15, 5:04 p.m.
My experience is probably the same as Jeff; I'll layout the process.
long TRUONG
commented Jan 24 '15, 7:11 p.m.
Wonder if there is a way to capture LDAP sync nightly failures for the list to be archive. |
One other answer
Ralph Schoon (63.7k●3●36●47)
| answered Jan 22 '15, 2:32 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
There is nothing built in. I am not aware of an extension point for that either. It would be better to have some automation when retiring the user from LDAP. See https://rsjazz.wordpress.com/2013/01/08/maintaing-user-photos-with-the-plain-java-client-libraries/ for an easy way to get to that API with Java.
|
Your answer
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.