Mapping groups from LDAP to display group descriptions

Starting in Maximo® Application Suite 9.0, you can configure the properties from LDAP to map to Maximo Application Suite by configuring group mapping in user registry synchronization. When synchronizing LDAP groups from an LDAP server to the Maximo Application Suite database, group description is not part of the group data that is copied from LDAP.

About this task

Some applications, such as Maximo Manage, are unable to display group descriptions since the description is not available in the Maximo Application Suite group records after synchronizing groups from LDAP.

With group mapping, you can map the group properties between Maximo Application Suite and LDAP by specifying the LDAP field to map to the Maximo Application Suite field. Alternatively, you can use a default value that is set by the system. For more information, see Group mapping

Procedure

  1. On the Suite administration page, select Configurations from the side navigation menu and then click User registry synchonization.
  2. In the Group mapping section, specify the custom mapping for the group data to synchronize the LDAP server with Maximo Application Suite so that the groups contain a description field.
    1. Select Add custom mapping.
    2. For the Maximo Application Suitefield, enter extension.description.
    3. In the column for LDAP field, enter the attribute that is the attribute for LDAP server groups. For example, enter description if description is the valid attribute for the LDAP server groups.
  3. Optional: Select Use default mapping to use values that are set by the system for LDAP fields.
    If you don't specify custom field values, then default values are used.
  4. In the LDAP domain attributes section, enter Bind DN and Bind Password.
    Every time User Registry Synchronization configuration changes, you must update these security fields with the Bind DN and Bind password.
  5. Save your changes.

Results

When you save the mapping changes, the configuration is processed. In the next scheduled synchronization cron job, the user synchronization changes are applied.

For example, if you added description as the attribute for the LDAP server groups to extensions.description, then it is mapped in the groups and is saved in the Maximo Application Suite database.