Uploaded image for project: 'Crowd'
  1. Crowd
  2. CWD-910

Need selective user import facility



    • Type: Suggestion
    • Status: Gathering Interest (View Workflow)
    • Resolution: Unresolved
    • Fix Version/s: None
    • Component/s: Core features
    • Labels:
    • Environment:
      Delegated Authentication Directory
    • Feedback Policy:

      Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.


      There is a need to import a small number of users from one directory to another for the efficient configuration of Delegated Authentication Directory. This happens if the external LDAP is many thousands of users (e.g. whole organisation), but only a couple of dozens of them need to be added to the Crowd's part of Delegated Auth. Directory.

      Here is the problem with existing methods:
      *) Directory Importer is too resource heavy both during the import on the LDAP server and afterwards on Crowd Database and administration interface screens.
      *) Adding user requires retyping all the information for each user, which is labor-intensive and may introduce mistakes
      *) Doing automatic copy on login introduces delay where an administrator has to wait for user to login, then add that user to the correct groups and then asking user to login again. This delay would make adoption rate slower. I prefer to have all the users setup and assigned to the groups for the seamless experience.

      A solutions could be any of the following (or anything better):
      *) Directory Importer should allow a regexp against user name or email. That way, even if I have to run it multiple times, I still only need to provide single simple peace of data.
      *) On 'Add user' screen, add lookup button that will autocomplete all fields based on entered name/email
      *) On 'User lookup' details screen in Admin UI, add 'copy to [directory]' button that will go directly into 'Add user' screen with all fields already filled in. This would require setting up a secondary non-delegated directory connector.
      *) On 'User lookup', allow to search against underlying external LDAP and then have checkboxes to add then to internal copy as well.

      As the situation now, it is too labor intensive to be effective.


          Issue Links



              Unassigned Unassigned
              arafalov Alexandre Rafalovitch
              12 Vote for this issue
              6 Start watching this issue