Enable an LDAP listener and set system properties
-
- UpdatedJan 30, 2025
- 3 minutes to read
- Yokohama
- Platform Security
Enabling a listener is optional. If enabled, a listener notifies the system to process LDAP records soon after there is an update on the LDAP server.
Before you begin
Role required: admin.
About this task
A listener is a dedicated process that periodically searches for changes on the LDAP server.
The listener can be deployed on a Microsoft Active Directory server that supports persistent queries (ADNotify), or on an LDAP server that supports persistent search request control (with OID 2.16.840.1.113730.3.4.3).
If the LDAP server supports a persistent search, the LDAP listener recognizes any user and group changes made to any of the applicable LDAP accounts and forwards them to your instance within approximately 10 seconds. This allows the instance to have a nearly real-time copy of your users' account details without having to wait for the next scheduled refresh. The LDAP listener can only synchronize objects that map to the User [sys_users] and Group [sys_user_group] tables.
To enable a listener:
Procedure