When M-Business Server is installed with NT domain integration, you can restrict the found set of users in the domain to those
belonging to specific groups. The AGDomainSync tool allows you to bulk import domain accounts by group. Before doing so, however,
set the ExternalAuthCreatesUsers directive in the sync.conf.default file to Off/False.
Setting the ExternalAuthCreatesUsers directive in the sync.conf.default file to Off/False does not affect user account validation—that is, the validation logic is not restricted by group, only domain. AGDomainSync
deletes users from the SQL Anywhere database if they are deleted from the domain.
If an administrator deletes or disables a user's domain account with the NT User Manager tool, the user cannot synchronize or log in to the UI. The user still exists in the SQL Anywhere database, but is marked for deletion. You do not have to run the AGDomainSync tool for this to happen.
| Send feedback about this page using email. | Copyright © 2008, iAnywhere Solutions, Inc. |