Unmapping LDAP users and groups

Similar to mapping, it is possible to unmap users and groups using Crystal Enterprise.

To unmap LDAP groups using Crystal Enterprise

1. Go to the Authentication management area of the CMC.
2. Click the LDAP tab.

   If LDAP authorization is configured, the LDAP summary page will appear.

3. In the "Mapped LDAP Member Groups" area, select the LDAP group you would like to remove.
4. Click Delete.
5. Click Update.

   The users in this group will not be able to access Crystal Enterprise.

   Tip:    To deny LDAP Authentication for all groups, clear the "LDAP Authentication is enabled" check box and click Update.

   Note:    The only exceptions to this occur when a user has an alias to an Enterprise account, or if your implementation allows users to create their own accounts through the sign-up feature. To restrict access, disable or delete the user's Enterprise account and disable the ability for guests to add users anonymously. For more information, see Managing Enterprise and general accounts.

To unmap LDAP users using Crystal Enterprise

1. Go to the Users management area of the CMC.
2. Click the name of the user whose account you want to unmap.
3. On the Properties tab, for the user's LDAP alias clear the Enabled check box.
4. Click Update.

   This user can no longer log on using LDAP authentication. To further restrict access, disable or delete the user's other aliases, their Enterprise account, and disable the ability for guests to add users anonymously. For more information, see Managing Enterprise and general accounts. To restrict access for this user

Related topics

• Configuring LDAP authentication and mapping LDAP accounts
• Mapping LDAP groups