Manage Users
The User tab provides options to manage users on Directory Server.
Create a User
Follow the steps below to create a user account:
- Click Create. This will launch the User Creation Wizard window.
- Specify the following information for the LDAP user and then click Next:
- Name: The name of the user will be stored as the uid attribute in the LDAP database.
- Description (optional): The description of the user will be stored as the gecos attribute.
- Email (optional): The email address of the user will be stored as the mail attribute.
- Password: The password of the user will be stored as the userPassword attribute.
- Disallow the user to change account password (optional): This information will be stored as the shadowMin attribute.
- Disable this account (optional): This information will be stored as the shadowExpire attribute.
- Tick the checkbox(es) to add the user to the following built-in group(s) and click Next:
- users: This is the default group for all LDAP users. If users in this group are not added to the administrators or group, they will not have DSM or LDAP administrative privileges.
- Directory Operators: Users added to this group will have administrative privileges of the LDAP database.
- Administrators: Users added to this group will have the same administrative privileges as DSM admin.
- If necessary, edit additional user attributes and then click Next..
- Click Apply to complete the setup.
Note:
You can set an account expiration date or prohibit a user from changing the password.
Import Users
Follow the steps below to import user accounts.
- Click the arrow next to Create.
- Select Import Users.
- Select a file to upload. The file should contain user information in CSV format with tab-separated values.
- Confirm the preview is correct and click OK to import users.
File Formatting:
When preparing a file to import, different user accounts should be recorded on separate rows and each value should be separated by a tab in the following order (from left to right):
- Username
- Password
- Description
- Email
- Employee number
- Department
- Employee type
- Title
- Work phone (can include digits, dashes '-', plus signs '+', and parentheses '(' and ')', maximum length is 32 characters)
- Home phone (can include digits, dashes '-', plus signs '+', and parentheses '(' and ')', maximum length is 32 characters)
- Mobile phone (can include digits, dashes '-', plus signs '+', and parentheses '(' and ')', maximum length is 32 characters)
- Address
- Birthday (the format should be YYYY/MM/DD like 2000/1/1)
Edit a User
Select a user account and double click on it or click Edit to edit the account settings.
Remove a User
Select a user and click Delete, then click OK to delete the user.
Enable User Home Folder
Like local users of DiskStation, all LDAP users can have their own home folder and access it via CIFS, AFP, FTP, or File Station. All their data will be located in their home folder if not specified.
All LDAP users' home folders are located in one of the sub-folders under a folder named "@LH-domain name".
The name of the user's home folder is the user account + an unique number.
Note:
Enabling LDAP user home service will also enable the local user home service if it's not enabled yet.