Cloud Gateways Switching WiFi Physical Security Integrations
What's New Support
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Phone Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
Cloud Gateways Switching WiFi Physical Security Integrations

Social

Facebook Twitter Youtube Instagram

Company

Careers Contact Us Investors

Training

Courses Calendar Trainers Become a Trainer

Tools

WiFiman UISP Design Center
  1. Ubiquiti Help Center
  2. UniFi
  3. UID Enterprise
  4. Admin Guide - Third-Party Integration

UID Enterprise - Streamline AD/LDAP User Imports with Profile and Lifecycle Management

The Profile and Lifecycle Management (i.e., AD and LDAP) is an add-on that syncs user properties from AD/LDAP to UID Enterprise, streamlining user directory management and simplifying user import.

Requirements

  • The Owner has applied for Profile and Lifecycle Management (i.e., AD and LDAP) in their UID Enterprise Manager (YOUR_SUBDOMAIN.ui.com/cloud) > Settings > Plan & Billing > Workspace Feature Usage > Apply for Plan Add-Ons
  • You have integrated AD/LDAP with UID Enterprise. See instructions for AD and LDAP.

Enable Profile and Lifecycle Management

Once enabled, the deactivated or reactivated AD/LDAP users will be synced to UID Enterprise for streamlined management. 

  1. Go to your UID Enterprise Manager > Organization > Directory Integration > Directory, and select a directory server.
  2. Go to Provisioning > Profile and Lifecycle Management > Allow AD/LDAP to Manage UID Enterprise Users and tick the Profile and Lifecycle Management.
  3. Set When a User Is Deactivated in AD/LDAP to Do Nothing or Deactivate the user in UID Enterprise.  
  4. Set When a User Is Reactivated in LDAP to Reactivate the UID Enterprise User if Their Status Is Suspended or Reactivate the UID Enterprise User if Their Status Is Deactivated
  5. Click Save Changes.

Sync AD/LDAP Users to UID Enterprise Groups

Once Profile and Lifecycle Management is enabled, you can then add user import rules to sync AD/LDAP users to specified UID Enterprise groups.

  1. Go to your UID Enterprise Manager > Organization > Directory Integration > Directory, and select a directory server.
  2. Go to Settings > User Import Rules and click Add Rule.
  3. Enter the rule name, set the conditions, and add UID Enterprise groups.
  4. Click Save.

Enable Import Safeguard

Once enabled, the user import feature will be suspended if the number of deactivated users in any import task exceeds the specified percentage. This prevents accidental user deactivation. Admins can resume this feature at any time.

  1. Go to your UID Enterprise Manager > Organization > Directory Integration > Directory, and select a directory server.
  2. Go to Provisioning > Import Safeguard > Suspend User Import Feature, tick When Any Import Task's Ratio of Deactivated Users Exceeds __ %, and specify a percentage.
  3. Click Save Changes.

Manage Attribute Mapping

Attribute Mapping aligns user properties from AD/LDAP to UID Enterprise. This ensures that user data, such as names, job titles, employee IDs, and phone numbers, are accurately synced to UID Enterprise for streamlined profile management.

  1. Go to your UID Enterprise Manager > Organization > Directory Integration > Directory, and select a directory server.
  2. Go to Provisioning > UID Enterprise Attribute Mapping, click the ellipsis beside an attribute, and select an action: 
    • Edit Mapping: Change the attribute value as needed and click Save
    • Remove Mapping: Confirm to Remove the mapping between AD/LDAP and UID Enterprise. 
  3. Click Save Changes.

 

Was this article helpful?