How to create Portal/OID groups from AD OUs and keep them sync'd?
10864Oct 22 2007 — edited Oct 30 2007We are currently doing a simple one-to-one import sync mapping from Active Directory to OID for use by Portal.
In AD there are 40+ OUs with CN=username records, that we would like to have mapped to 40+ Portal groups with CN=username records as unique group members. We want to manage Portal privileges at the Portal group level rather than for each of 3,000+ individual users.
Each OU has it's own AD admin, so there is no way of knowing at what sub-level in the OU, an AD admin might create a CN=username record.
I had thought to manually create 40 new Portal groups, since the OUs seldom change. Now, I need to know how to create/map each of the OU=xxx, CN=username values as a unique member of the correct Portal group. During the sync, if an AD CN=username is added/modified/deleted from an existing OU=xxx, that same add/modify/delete needs to happen in the appropriate Portal group.
If somebody could assist me in "making it so", I would appreciate your time and help.
--Don