LDAP synchronizations
You can schedule when Spotfire Server synchronizes its user directory with LDAP directories. Both users and groups are synchronized in the background, and user and group look-ups query the Spotfire database rather than the LDAP directory.
There are two algorithms that can be used when configuring the recurrence of synchronization tasks: one is based on cron schedules and the other on sleep time between synchronizations.
Sleep time is only used when no cron schedule exists for the LDAP configuration. The sleeping period is configurable and by default it is set to 60 minutes.
New configurations have two default cron schedules: "restart" and "daily". "Restart" runs synchronization at each restart of Spotfire Server; "daily" runs synchronization once a day (at midnight server time). Upgraded configurations may not have these default cron schedules.
Each LDAP configuration has its own schedules. It is possible to use cron schedules for one LDAP configuration and sleep time for another.
- User synchronization
By default, the user directory only synchronizes users (not groups) from the LDAP directories. - Group synchronization
Group synchronization mirrors in the user directory the group hierarchies that are in the LDAP directory. - Group-based and role-based synchronization
For Active Directory servers, Spotfire Server can synchronize groups. For the Directory Server product family, Spotfire Server can synchronize either groups or roles.
- User synchronization
By default, the user directory only synchronizes users (not groups) from the LDAP directories. - Group synchronization
Group synchronization mirrors in the user directory the group hierarchies that are in the LDAP directory. - Group-based and role-based synchronization
For Active Directory servers, Spotfire Server can synchronize groups. For the Directory Server product family, Spotfire Server can synchronize either groups or roles.