Manage connections to directory services

  • Article

Applies To: Office SharePoint Server 2007

This Office product will reach end of support on October 10, 2017. To stay supported, you will need to upgrade. For more information, see , Resources to help you upgrade your Office 2007 servers and clients.

 

When you configure import settings for user profiles, you can choose to import user profile information from servers running the Active Directory directory service for your current domain, from servers running Active Directory for your entire forest, or from servers running Active Directory on one or multiple custom domains.

You can also import user profile information from a Lightweight Directory Access Protocol (LDAP) directory or from the Business Data Catalog.

To manage connections to directory services, you must first open the Manage Connections page:

  1. Open the administration page for the Shared Services Provider (SSP).

    To open the administration page for the SSP, do the following:

    1. On the top navigation bar, click Application Management.

    2. On the Application Management page, in the Office SharePoint Server Shared Services section, click Create or configure this farm’s shared services.

    3. On the Manage this Farm’s Shared Services page, click the SSP for which you want to open the administration page.

  2. On the Shared Services Administration Home page, in the User Profiles and My Sites section, click User profiles and properties.

  3. On the User Profiles and Properties page, in the Profile and Import Settings section, click Manage connections.

What do you want to do?

  • Create a connection to Active Directory

  • Create a connection by using LDAP

  • Create a connection to the Business Data Catalog

Create a connection to Active Directory

  1. On the Manage Connections page, click Create New Connection.

  2. On the Add Connection page, in the Connection Settings section, click Active Directory on the Type menu.

  3. In the Domain name box, type the name of the domain where the Active Directory directory service that you are connecting to resides.

  4. Select one of the following:

    • Auto discover domain controller. If you select this option, a domain controller will be detected automatically.

    • Specify a domain controller. If you select this option, type the domain controller to connect to in the Domain controller name box.

  5. To use Secure Socket Layer (SSL) connections, select the Use SSL-secured connections check box.

  6. To limit the amount of time spent attempting to access a server that is not responding, type a value in the Time out (in seconds) box.

  7. To enable the Server Side Incremental feature, select the Enable Server Side Incremental check box.

    Enabling the Server Side Incremental feature increases efficiency when profiles are imported by using the tracking features of Active Directory.

  8. In the Search Settings section, either type the distinguished name of the directory node from which to import users in the Search base box or click Auto Fill Root Search Base.

  9. To filter which user profiles are imported by using LDAP query clauses, add the clauses to the User filter box.

  10. In the Scope section, select one of the following:

    • One level. User profiles are imported only from the first level of the subtree.

    • Subtree. User profiles are imported from the entire subtree.

  11. To limit the amount of data that is imported for each page, type a value in the Page size (in number of users) box.

  12. To limit the amount of time spent attempting to access a server that is not responding, type a value in the Page time out (in seconds) box.

  13. In the Authentication Information section, select one of the following:

    • Use Default Account. The default account is used, and no further specification is required. The default account must have access to the directory and have the correct permissions to the profile store.

    • Specify Account. If you select this option, provide the account credentials in the Account name, Password, and Confirm password boxes. The specified account must have access to the directory and have the correct permissions to the profile store.

  14. Click OK.

Create a connection by using LDAP

  1. On the Manage Connections page, click Create New Connection.

  2. On the Add Connection page, in the Connection Settings section, click LDAP Directory on the Type menu.

  3. In the Connection Name box, type a name for the connection.

  4. In the Directory service server name box, type the name of the directory service server to which you want to connect.

  5. In the Port box, type the value for the port for the connection.

  6. To use Secure Socket Layer (SSL) connections, select the Use SSL-secured connections check box.

  7. To limit the amount of time spent attempting to access a server that is not responding, type a value in the Time out (in seconds) box.

  8. In the Provider name box, type the name of the provider. The provider name is the name of the registered LDAP authentication provider. The provider name here needs to match the provider name specified in the Web.config file.

  9. In the Search Settings section, either type the distinguished name of the directory node from which to import users in the Search base box or click Auto Fill Root Search Base.

  10. To filter which user profiles are imported by using LDAP query clauses, add the clauses to the User filter box.

  11. In the Scope section, select one of the following:

    • One level. User profiles are imported only from the first level of the subtree.

    • Subtree. User profiles are imported from the entire subtree.

  12. To limit the amount of data that is imported for each page, type a value in the Page size (in number of users) box.

  13. To limit the amount of time spent attempting to access a server that is not responding, type a value in the Page time out (in seconds) box.

  14. In the Authentication Information section, select one of the following:

    • Use Default Account. The default account is used, and no further specification is required.

    • Specify Account. If you select this option, provide the account credentials in the Account name, Password, and Confirm password boxes.

  15. Click OK.

Create a connection to the Business Data Catalog

  1. On the Manage Connections page, click Create New Connection.

  2. On the Add Connection page, in the Connection Settings section, click Business Data Catalog on the Type menu.

  3. In the Connection name box, type a name for the connection.

  4. Next to the Business Data Catalog Entity box, click Browse, and then select a Business Data Type by using the Business Data Type Picker dialog box.

  5. Depending on how user profiles are stored in the Business Data Catalog, select either Connect User Profile Store to Business Data Catalog Entity as a 1:1 mapping or Connect User Profile Store to Business Data Catalog Entity as a 1:many mapping.

  6. On the Filter items by list, click a filter to filter the Business Data Catalog results.

    Depending on the Business Data Catalog Entity that is selected, the available filters vary.

    Note

    If you select a filter, click a profile property to use as the filter value in the Use this profile property as the filter value list.