Can I prevent LDAP users from being synchronized until they log in?


THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT, version 7.2 and later

QUESTION

Can I prevent LDAP users from loaded into EFT until they log in?

ANSWER

In EFT v7.4 and later:

In the LDAP Authentications Options dialog box, select the Synchronize users only after they first attempt to log in check box to specify whether to load the LDAP user database into EFT all at once or to pull users one-by-one after successful logins (the latter would be better for performance). This option should help the customer to decrease memory consumption, but the next points should be considered:

  • It does not affect the previously populated clients and will work only for newly created clients.
  • The typical scenario where this option will be the most effective is when using a huge LDAP data source for EFT with a relatively small number of connected clients (the number of actually used client's logins).

In EFT versions prior to v7.4

Create the registry setting below:

HKEY_LOCAL_MACHINE\Software\Wow6432Node\GlobalSCAPE Inc.\EFT Server 7.0\

Name: IgnoreNeverLoggedInLDAPUsers

Type: BOOL

Values: 0 = load all users (default); 1 = pull users one at a time as they log in

Cached: yes

Backup/Restore: yes