Skip to Content

[XI 3.1] Modifiy LDAP configuration : delete aliases secLDAP and groups

May 11 at 09:09 AM


avatar image


replace LDAP configuration (OID) by another (AD) will remove aliases secLDAP and groups LDAP?

If not, how to remove all aliases secLDAP and all groups LDAP?



10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Best Answer
Tim Ziemba
May 11 at 11:01 AM

The order you do things is important here. If you are removing the old OID aliases and groups you must perform that task 1st in the CMC > Authentication > LDAP plugin remove all mapped groups and hit update. depending on how many mapped groups/users it may take time for the CMS to delete all their records (under a thousand pretty quick, under 10K maybe a n hour over 100K several hours.

You can login to query Builder to check and verify all the LDAP users are gone using the LDAP user query in here

At that point you can remove the LDAP server and switch to the new AD server. Once the server config is successful you can map in new users/groups.

NOTE: This workflow changes if you want to keep the old users, but that wasn't how I understood your question


10 |10000 characters needed characters left characters exceeded