Skip to main content
A
AM_106446808-Gravel
8-Gravel
February 8, 2024
Solved

Is it possible to automatically recompute LDAP groups on an hourly basis or multiple times a day?

  • February 8, 2024
  • 2 replies
  • 8550 views

I am using Windchill PDMLink Release 12.0 and Datecode with CPS 12.0.2.15

We would like to know if it is possible to automatically recompute groups multiple times a day from a Third party LDAP directory. Currently we looked at this article,
https://www.ptc.com/en/support/article/CS29278?source=search,
which shows that groups are recomputed once per day automatically if that property is set.

I also found this article https://support.ptc.com/help/windchill/wc111_hc/whc_en/index.html?_gl=1*47qgm7*_ga*MTE2NTk3MDExOS4xNzA2ODA1MjQ5*_ga_CBN5QVB9VJ*MTcwNzQyOTk3My4xMi4xLjE3MDc0MzA0ODUuMC4wLjA.#page/Windchill_Help_Center/queuemgmtChp_OutBoxBackgroundQueue_CtScheduleQueue.html.

Best answer by d_graham

Sounds like a job for Scheduling Queue entry.

 

Very doable. I've done it plenty of times for customers that need whatever to happen at prescribed intervals.

In your case, whatever is recomputing your groups.

 

You mentioned trying to stay OOTB.  You're not going to get there OOTB.

 

If you need the groups to be recomputed for the sake of workflows, that too can be automated to be immediate rather than waiting 4 hours.

2 replies

A
Ajit_Kulkarni16-Pearl
16-Pearl
February 8, 2024

Hello,

 

Yes it is possible to re-compute groups multiple times in a day.

 

This is language independent but you can refer below article as starting point. 

https://myjeeva.com/querying-active-directory-using-java.html

 

Once you have report generated multiple times in a day, you can have workflow processing that report. 

 

Regards

Ajit 

A
AM_106446808-GravelAuthor
8-Gravel
February 8, 2024

Thank you Ajit. Currently I am trying to stay as close to possible to OOTB capabilities. Right now the groups in PDMLink only recompute once per day per this property: 

  • wt.inf.team.refreshGroupsDailyQueueTime=12:30:PM

Is there a similar property that can be set to do this multiple times a day or would we need to customize it per your recomendation?

HelesicPetr
22-Sapphire II
HelesicPetr22-Sapphire II
22-Sapphire II
February 9, 2024

Hi @AM_10644680 

Iam sure if the property existed it would be in the article CS29278

PetrH

PetrH
    J
    jbailey18-Opal
    18-Opal
    February 13, 2024

    Oh boy... dare I say someone wants SCIM in Windchill? I have had a few discussions with PTC's security folks about improving modernizing Windchill's Authentication / Authorization to better manage user's access.

     

    I suggested a working group that could cover SAML, Oauth, provisioning, ACL's etc... Hasn't gone very far yet though.

      A
      AM_106446808-GravelAuthor
      8-Gravel
      February 13, 2024

      OAuth would be nice :). We need to get authentication updated in Windchill. 

      J
      jbailey18-Opal
      18-Opal
      February 13, 2024

      Windchill does support Oauth, SAML etc, but mainly for authentication and whole-system authorization (which relies on ACL's etc).

       

      Would be nice to send additional attributes (SAML) or Claims (Oauth) and let Windchill make some advanced authN/authZ decisions - hence my suggestion to PTC of a working group 🙂 

      Terms & ConditionsCookie settingsAccessibility statement