User Service Data to LDAP Attributes Mapping

Purpose

Use this form to map corporate directory (LDAP Lightweight Directory Access Protocol is a software protocol for enabling anyone to locate organizations, individuals, and other resources such as files and devices in a network. LDAP is a "lightweight" (smaller amount of code) version of DAP (Directory Access Protocol), which is part of X.500, a standard for directory services in a network.) user data to the MiVoice Business user data.

MiVoice Business, via the Integrated Directory Services (IDS) IDS synchronizes user and service data between a corporate directory server and MiVoice Business IDS (or MiCollab if in the same network cluster) using the Lightweight Directory Access Protocol (LDAP). Once the data is synchronized, it is distributed from the MiVoice Business IDS to the various member elements in the SBS network or cluster. application, uses the map to convert LDAP queries that it receives from the directory server into internal User Service Data recognized by MiVoice Business. The mapping enables you to reuse information in the corporate LDAP directory to provision MiVoice Business users .

If a user service data field has a mapped LDAP attribute that is not set from the directory server or is not returned from an LDAP query, then "default handling" is used to program the field on MiVoice Business. The following default handling options are available:

• None - Default handling is not applied. If the field is blank, it remains blank.

• Template - A User and Service Template provides the missing value. If the user role is known, its template is used. Otherwise, the default template is used.

• System Defined - Default handling is applied by the system. For details, see the field descriptions below.

In the current release, the form provides mapping for the Microsoft Active Directory (AD) service. Support for other directory services will be added in a later release.

Use this form when performing the following tasks:

• Configuring IDS on MiVoice Business

• Implementing MiVoice Business IDS on an SDS Network

• Migrating from OPS Manager IDS to MiVoice Business IDS

For more information:

• What Data is Synchronized

NOTE: MiVoice Business also provides a built-in LDAP server and an interface to servers running OpenLDAP, an open source implementation of LDAP. Both are used by 69xx IP Phones to populate its native Phone Book application with user data. For more information, see LDAP Client Configuration.

Conditions

• The form is programmed with a default set of LDAP attributes for Microsoft Active Directory (AD). Update the values only if your server is using non-default LDAP attributes.

• LDAP attributes must be programmed for the following User Service Data fields: First Name, Last Name, and User ID. All other fields can have blank LDAP Attributes, which enables them to be updated from a User and Service Template or the directory server, or to remain blank. To clear all non-essential fields, click the Clear button.

• When updating an LDAP attribute in the map, bear in mind that it should:

• belong to the user object class

• be programmable from a GUI tool such as the Users and Computers console

• use the same syntax as the user service data (for example, "User ID" and "ObjectGUID" both contain GUID)

• be single-valued (recommended but not essential)

• be included in the Global Catalog PAS if you intend to synchronize with the GC for all domains in your network; for more information, see IDS General Guidelines and Limitations  

• LDAP attributes must be unique.

Field Descriptions