Working with custom LDAP groups

Use the Manage Custom LDAP Groups page to manage custom groups based on attributes defined in your directory service. This option is available only if you have configured User Service to communicate with an LDAP-based directory service.

Important:

When you add custom LDAP groups, the group definitions are stored by the active Policy Server, and do not affect other Policy Server instances. To add custom LDAP groups to multiple Policy Servers, connect to each Policy Server in turn and enter the information.

If you add custom LDAP groups, and then either change directory services or change the location of the directory server, the existing groups become invalid. You must add the groups again, and then define each as a client.

To add a group, click Add (see Adding or editing a custom LDAP group).
To change an entry in the list, click on its group name (see Adding or editing a custom LDAP group).
To remove an entry, first select it, and then click Delete.

When you are finished making changes to custom LDAP groups, click OK to cache the changes and return to the previous page. Changes are not implemented until you click Save and Deploy.