System Manager integrates with Lightweight Directory Access Protocol (LDAP) directory servers to provide the following functions:

• Synchronization of users from the LDAP directory server to System Manager User Management.

• Bidirectional synchronization of the selected user attributes from System Manager to the LDAP directory server.

LDAP supports the following directory servers for synchronization:

• Microsoft Active Directory 2012

• Microsoft Active Directory 2016

• Microsoft Active Directory 2019

• Microsoft Active Directory 2022

• OpenLDAP 2.4.46

• IBM Domino 7.0

• Novell eDirectory 8.8

• SunOne Directory/Java System Directory 6.3

From the System Manager web console, you can run the directory synchronization engine as an on-demand job. You can also schedule the data synchronization to and from the enterprise directory. During synchronization of information to the enterprise directory server, System Manager modifies the user data that is stored in the LDAP directory server.

From the System Manager web console, you can configure bidirectional attribute mapping through the Directory Synchronization user interface. The bidirectional synchronization does not synchronize the user in the LDAP directory synchronization that is created from the System Manager web console and the System Manager bulk import utility. The bidirectional synchronization only synchronizes the attributes for the user that you synchronized from the LDAP directory server.

You can perform LDAP synchronization of Microsoft Active Directory or other supported directory server administrator roles with System Manager administrator roles. The capability includes system roles and custom roles on System Manager.