Create a dynamic group

In a dynamic group, you do not individually select the users who belong to the group. Instead, you specify a set of rules and all users who meet those rules are automatically added to the dynamic group.

Use one of these two ways to create dynamic groups:

  • Enable the automatic creation of dynamic groups based on email domains, such as @adobe.com. When you enable this feature, User Management creates a dynamic group for each unique email domain in the LiveCycle database. Use a cron expression to specify how often User Management searches the LiveCycle database for new email domains. These dynamic groups are added to the DefaultDom local domain and are named "All users with an [email domain] mail ID."

  • Create a dynamic group based on specified criteria, including the user’s email domain, description, canonical name, and domain name. To belong to the dynamic group, a user must meet all the specified criteria. To set up an "or" condition, create two separate dynamic groups and add them both to a local group. For example, use that approach to create a group of users who belong to the @adobe.com email domain or whose canonical name contains ou=adobe.com. However, the users do not necessarily have to meet both conditions.

A dynamic group contains only users. It cannot contain other groups. However, a dynamic group can belong to a parent group.

Automatically create dynamic groups based on email domains

  1. In Administration Console, click Settings > User Management > Configuration > Configure Advanced System Attributes.

  2. Under Auto Creation of Dynamic Group, select the check box.

  3. Specify when User Manager checks for new email domains. This time should be after the domain synchronization time because the creation of dynamic groups is logical only if the domain synchronization is completed.

    • To enable automatic synchronization on a daily basis, type the time in the 24-hour format in the Occurs Daily At box. When you save your settings, this value is converted to a cron expression, which is displayed in the box below.

    • To schedule synchronization on a particular day of the week or month, or in a particular month, select type the appropriate cron expression in the box. The default value is 0 00 4 ? * * (which means check at 4 A.M. every day).

      The cron expression usage is based on the Quartz open source job-scheduling system, version 1.4.0. (See Class CronTrigger.)

  4. Click Save.

Create a dynamic group based on specified criteria

  1. In Administration Console, click Settings > User Management > Users And Groups.

  2. Click New Dynamic Group.

  3. Complete the General Settings section. Group Name is a mandatory attribute. You can assign the group to any configured domain.

  4. Under Dynamic Group Criteria, specify one or more attributes used to populate the dynamic group.

    Note: The Email, Description, and Canonical Name attributes are case-sensitive when using the Equals operator. They are not case-sensitive with the Starts With, Ends With, or Contains operators.

    Email: User’s email domain, such as @adobe.com.

    Description: User’s description, such as "Computer Scientist"

    Canonical Name: User’s canonical name, such as ou=adobe.com

    Domain Name: The name of the domain to which the user belongs, such as DefaultDom. The Domain Name attribute is case-sensitive when using the Contains operator. It is not case-sensitive with the Starts With, Ends With, or Equals operators.

  5. Click Test. A Test page displays the first 200 users who meet the defined criteria. Click Close.

  6. If the test returned the expected results, click Next. Otherwise, edit the dynamic group criteria and test again.

  7. To add the dynamic group to a parent group, click Find Groups and do these tasks:

    • In the Find box, type your search criteria.

    • Select the domain, select the number of items to display, and click Find.

    • In the search results, select the check boxes for groups that the dynamic group belongs to and click OK.

  8. Click Next.

  9. To assign roles to the dynamic group, click Find Roles, select the check boxes for each role to assign to the group, and then click OK. Users in the group inherit roles that are assigned at the group level.

  10. Click Finish.

// Ethnio survey code removed