When you set up the VMware Identity Manager directory to sync with Active Directory, you specify the user attributes that sync to the directory. Before you set up the directory, you can specify on the User Attributes page which default attributes are required and add additional attributes that you want to map to Active Directory attributes.

About this task

When you configure the User Attributes page before the directory is created, you can change default attributes from required to not required, mark attributes as required, and add custom attributes.

After the directory is created, you can change a required attribute to not be required, and you can delete custom attributes. You cannot change an attribute to be a required attribute.

When you add other attributes to sync to the directory, after the directory is created, go to the directory's Mapped Attributes page to map these attributes to Active Directory Attributes.

Important:

If you plan to sync XenApp resources to VMware Identity Manager, you must make distinguishedName a required attribute. You must specify this before creating the VMware Identity Manager directory.

Procedure

  1. In the administration console, Identity & Access Management tab, click Setup > User Attributes.
  2. In the Default Attributes section, review the required attribute list and make appropriate changes to reflect what attributes should be required.
  3. In the Attributes section, add the VMware Identity Manager directory attribute name to the list.
  4. Click Save.

    The default attribute status is updated and attributes you added are added on the directory's Mapped Attributes list.

  5. After the directory is created, go to the Manage > Directories page and select the directory.
  6. Click Sync Settings > Mapped Attributes.
  7. In the drop-down menu for the attributes that you added, select the Active Directory attribute to map to.
  8. Click Save.

Results

The directory is updated the next time the directory syncs to the Active Directory.