Forum Discussion
Sync OpenLDAP users to Entra ID
My On prem is using RHEL based LDAP solution which acts as IdP now I am moving my on Prem to Entra ID which means I need to sync my users from On prem to Entra ID . This can be easily achieved if your on prem solution is using Active directory but for Open LDAP Microsoft article Generic LDAP Connector | Microsoft Learn is reference I followed all the steps but still not able to get the clear picture as nothing happens after I execute the steps successfully .
I installed MIM sync service then I configured LDAP connector but still not sure how to sync Linux users as I am migrating to Azure it is expected that during the migration phase Application A and B are on On prem while application C and D are moved to azure. if I have a user John who has access to all the 4 application 2 still in onpprem and two in Azure how will i ensure that he has the same identity.
I am not able to draw the high-level steps that are needed if it would have be Microsoft AD then Entra connect will help but not sure about open LDAP
1 Reply
Hi, if you're migrating users from OpenLDAP to Entra ID, you won't be able to use Entra Connect like you would with Active Directory. Here are the main steps:
-Use Microsoft Identity Manager (MIM):
Install the sync service on a Windows server and configure the Generic LDAP Connector to connect to your OpenLDAP.-Configure the LDAP Connector:
Follow the official guide to properly map attributes (such as UPN and username) from OpenLDAP to Entra ID.-Run a Test Sync:
Perform a full sync and check the logs to ensure that all users are imported correctly.-Maintain Unified Identity:
During the migration, if some applications remain on-prem and others move to Azure, ensure that each user (e.g., John) retains the same identifier (like UPN) across both environments.
