Scenario 3: Import Users from an LDAP Group to Team Studio

After installing, customers must run a rake task to import users from an LDAP server to Team Studio if they authenticate users through a group membership.

Prerequisites

Before running the rake command, customers must edit the ldap.properties file to fill in values for LDAP server parameters. For detailed instructions, see Enabling LDAP Authentication.

Procedure

  1. The admin user starts the rake ldap:import_users command from the $CHORUS_HOME/current directory.
  2. The Team Studio back end starts processing the rake task.
  3. The Team Studio back end reads the LDAP server configuration from the ldap.properties file and sends a query to the LDAP server to fetch a list of members for a specified group.
  4. The LDAP server returns with a list of members for the specified group.
    For each user in the list:
  5. The Team Studio back end sends a query to the LDAP server to fetch the properties (first name, last name, email address, user ID, and so on) for a specified user.
  6. The LDAP server returns a list of properties for the specified user.
  7. The Team Studio back end creates or updates a user in the Team Studio database.
  8. The user is created successfully in the Team Studio database using the Collaborator role. The admin user can modify the role for each user, for example, by adding the Developer or Admin role.
  9. The Team Studio back end completes the rake task and returns.
Related tasks