The following sections describe the effects of adding, editing, and deleting entries from the directory service and from the MiCollab USP application. It's recommended that you add, edit, and delete all IDS managed entries from the directory service and use roles and templates to assign data to the MiCollab fields that are not supported in the directory service.
Add a Directory Service user: When you add a user entry to the directory service, the user is added to the directory server and the data in the mapped attribute fields are copied to the MiCollab system on the next synchronization event. When creating the entry, ideally complete the following fields:
givenName,
sn,
samAccountName,
distinguished name,
telephoneNumber,
mail,
employeeType (in this field, assign a MiCollab role that references a template with the desired services. The user data will be updated in the MiCollab USP. The role references a template that assigns the appropriate phone services and applications to the entry on MiCollab. If SPP is enabled, the user and phone services will also be automatically programed on the MiVoice Business platform)
Add a MiCollab user:When you add a user entry in MiCollab USP, the user is created in MiCollab. Even if the IDS managed box is checked, the directory service is not updated with the new entry. Synchronization only occurs from the directory service to MiCollab. However, if a matching user entry is already present in the directory service, the entries are paired on the next synchronization interval. Additionally, if a role and template are assigned, the services are provisioned for the user.
If you edit an entry from the directory service:
Move the user to another domain. If both the previous and new domains (domains must belong to the same forest) are managed by IDS, the user’s domain is updated in MiCollab to reflect the new directory server domain. If the previous domain was not managed or was not detected by IDS, and the user's new domain is not managed by IDS, the user is deleted from MiCollab.
Move the user to another OU. If both the previous and new OUs are managed by IDS, the user's distinguished name is updated in MiCollab and the user remains synchronized. If the new OU is not managed by IDS, the user is not deleted; however, any future updates will not be synchronized with MiCollab.
Update a Directory Server field which is mapped in MiCollab. The update is applied to the matching entry in MiCollab.
Update a Directory Server field which is not mapped in MiCollab. The update is not applied to the matching MiCollab entry.
Edit the Directory Server role attribute. No changes occur if the user is present in MiCollab. The role is only applied when you create a user in MiCollab using Quick Add or from the Bulk User Provisioning tool.
Update telephoneNumber from the Directory Server: MiCollab does not update the phone service. The update is ignored.
If you manage entries locally from MiCollab:
Mapped fields: When a user is managed by IDS, the Directory Server update is applied to the MiCollab entry on the next synchronization. Note that if you have made user edits locally on MiCollab through User and Services, those edits will be overwritten with the data from the directory server.
Unmapped fields: The field is updated in MiCollab only. The update is not made to the directory service. Data is only synchronized in one direction, from the directory service to MiCollab.
Add, edit, remove role attribute: When a user is managed by IDS. If the user's role is changed, no changes occur to the user and his services because the user is already provisioned.
If you delete a user entry from the directory service:
Delete IDS managed user from the Directory Server: The user is deleted from MiCollab and from the MiVoice Business if SPP is enabled. This includes all services provisioned against that user. Note that voice mails are deleted and cannot be recovered.
Clear IDS Managed user field from the Directory Server: The data in the IDS managed fields is removed from the entry on MiCollab. Synchronization and Authentication will be disabled.
Delete telephoneNumber from the Directory Server: Deleting a telephoneNumber field in the DS does not delete the user’s phone service on MiCollab. This operation is ignored.
If you delete a user entry locally from MiCollab:
Delete IDS managed user from MiCollab. The user is deleted in MiCollab. However, if the user is detected again in the directory service database during a MiCollab-IDS synchronization, the user is re-created in the MiCollab database.
Delete service from IDS user in MiCollab. The service is removed for that user. Since the user is still in the MiCollab database, the role from subsequent IDS updates are not applied to the record. The service remains deleted.