 To Specify How Object Creations Should Flow Between Directory
Server and Active Directory Systems
To Specify How Object Creations Should Flow Between Directory
Server and Active Directory SystemsClick the Object Creation tab.
 
You can enable or disable the flow of creations as follows:
Enable Object creations flow from Sun Java System Directory Server to Windows to propagate creations from the Directory Server environment to your Windows servers.
Enable Object creations flow from Windows to Sun Java System Directory Server to propagate creations from the Windows environment to your Directory Servers.
Enable both options for bidirectional flow.
Disable both options to prevent user creations from propagating from one system to the other. (Default).
To add, edit, or delete creation attributes to synchronize between systems, click the Creation Attributes button located under the selected option(s).
The Creation Attribute Mappings and Values dialog box displays.
 
 
You can use either of the dialog boxes to specify new creation attributes, edit, or delete existing attributes. For more information, see Specifying New Creation Attributes.
To satisfy schema constraints regarding required attributes for user object classes, you may have to specify additional attributes to flow through the system during a user creation.
Additional attributes are not necessary if you specified the required attributes as modification attributes (as described in Selecting and Mapping User Attributes).
The following instructions explain how to add and map creation attributes from Active Directory to Directory Server. (The procedure for adding and mapping creation attributes flowing from Directory Server to Windows and from Windows to Directory Server is similar.)
 To Specify New Creation Attributes
To Specify New Creation AttributesClick the New button in the Creation Attribute Mappings and Values dialog box.
The Define Creation Attribute Mappings and Values dialog box is displayed.
 
Select an attribute value from the Active Directory attribute drop-down list.
 
Identity Synchronization for Windows allows you to initialize an attribute with multiple values— if the attribute itself accepts multiple values.
For example, if your company has three fax telephone numbers, you can specify the facsilimiletelephonenumber attribute for both Sun Java System Directory Server and Active Directory, and specify the three numbers.
You must know which attributes will accept multiple values. If you try adding multiple values to an attribute that does not accept them, an error will result during runtime when the program attempts to create the object.
Enter a value in New value field and click Add.
The program adds the attribute value to the list pane. Repeat this step as many times as necessary to add multiple attribute values.
 
To map the attribute to Directory Server, select an attribute name from the Directory Server attribute drop-down list.
 
When you are finished, click OK.
Based on the example, the finished Creation Attributes and Mappings table would look like the one in the following figure.
 
To designate additional attributes, repeat these steps.
 To Edit Creation Attributes Mapping or Values
To Edit Creation Attributes Mapping or ValuesSelect the Object Creation tab, and click on the Creation Attributes button located under the selected creation option.
When the Creation Mappings and Values dialog box is displayed, select the attribute from the table, and then click the Edit button.
The Define Creation Mappings and Values dialog box is displayed.
Use the drop-down menus to change the existing mapping between Directory Server and Active Directory (or Windows NT).
For example, if you have Sun Java System Directory Server’s homephone attribute mapped to Active Directory’s othertelephone attribute. You could use the Active Directory attributes drop-down list to change the mapping to homephone.
You can also add or remove attribute values:
When you are done, click OK to apply your changes and close the Define Creation Mappings and Values dialog box.
Click OK again to close the Creation Mappings and Attributes dialog box.
 To Remove Creation Attributes Mapping or Values
To Remove Creation Attributes Mapping or ValuesSelect the Object Creation tab, and click the Creation Attributes button located under the selected creation option.
When the Creation Mappings and Values dialog box is displayed, select the attribute from the table, and then click the Delete button.
The attribute is removed from the table immediately.
When you are done, click OK to close the Creation Mappings and Attributes dialog box.