LDAP domains are imported automatically if they exist for the TDV sites that you are exposing through Business Directory. Multiple LDAP domains in different TDV instances are consolidated into one LDAP domain in Business Directory.

During a site refresh, new LDAP users and groups are updated to Business Directory, but none are deleted. For example, if an LDAP domain is deleted from within TDV, after refreshing this site in Business Directory, this LDAP domain is not removed from Business Directory.

Password information is never transferred to the Business Directory server.  When the Business Directory server needs to authenticate a user in the composite domain of a TDV site, it uses that TDV site to authenticate the user.

When the Business Directory needs to authenticate a user in an LDAP domain, it relies on the LDAP server to authenticate that user.   Authentication of LDAP users in Business Directory is done directly against the LDAP server, without involving the TDV site, using the original LDAP user name.

When you import LDAP server information from a remote TDV server, the Business Directory imports everything needed to connect with the LDAP server except the following:

Depending on how many different instances of TDV you plan to exposed through Business Directory, the domains that you can use to log into Business Directory varies as follows: