TAM provides the following methods to view LDAP users:
The device user list.
The all bound user list.
The bound user list of a specific synchronization policy.
Viewing LDAP users in the device user list
Click the User tab.
On the navigation tree, select Device User View > All Device Users.
The list displays all device users and includes the following columns:
See AlsoDetermining if the LDAP server is down - Support and TroubleshootingHow to check on a standalone server if we are using active directory?What Is LDAP Authentication and How Does It Work?Using the Test LDAP ToolAccount Name—Account name of the LDAP user. An LDAP user includes the icon
in this field.Device User Group—Device user group to which the LDAP user belongs.
Created At—Date when the LDAP user was created.
Expired At—Date when the LDAP user expires and becomes invalid. The user cannot log in to any device after 0:00 on the specified date.
An empty field indicates that the LDAP user never expires.
Status—Device user account state. The following options are available:
Normal—The user account can be used for device login.
Cancelled—The user account is already deleted and cannot be used for device login.
Modify—Click the Modify icon
for an LDAP user to display the page for modifying the LDAP user information.
Viewing LDAP users in the All Bound User list
Click the User tab.
On the navigation tree, select Device User > LDAP Users from the navigation tree.
The list displays all LDAP users and includes the following columns:
Account Name—Account name of the LDAP user.
Device User Group—Device user group to which the LDAP user belongs.
Policy Name—Name of the LDAP synchronization policy with which the LDAP user is bound. Click the name of a policy to view its details. For more information about LDAP synchronization policy details, see "Viewing LDAP synchronization policy details."
Status in LDAP Server—State of the LDAP user. The following options are available:
Unknown—Initial state of the device user when it is bound to the LDAP synchronization policy.
Existent—The user exists on the LDAP server.
Inexistent—The user does not exist on the LDAP server.
Both Existent and Inexistent indicate the state of the LDAP user during the last synchronization. To learn the current state of an LDAP user, synchronize the user immediately. For more information, see "Synchronizing LDAP users."
Viewing LDAP users in the bound user list
Click the User tab.
On the navigation tree, point to the More icon
next to Device User > LDAP Users to display all LDAP synchronization policies.Click the name of an LDAP synchronization policy.
The list displays all LDAP users bound with the synchronization policy and includes the following columns:
Account Name—Account name of the LDAP user.
Device User Group—Device user group to which the LDAP user belongs.
Policy Name—Name of the LDAP synchronization policy with which the LDAP user is bound. Click the policy name to view detailed information (see "Viewing LDAP synchronization policy details").
Status in LDAP Server—State of the LDAP user. The following options are available:
Unknown—Initial state of the device user when it is bound to the LDAP synchronization policy.
Existent—The user exists on the LDAP server.
Inexistent—The user does not exist on the LDAP server.
Both Existent and Inexistent indicate the state of the LDAP user during the last synchronization. To learn the current state of an LDAP user, synchronize the user immediately. For more information, see "Synchronizing LDAP users."
