Description Daniel Tröder 2017-06-08 09:03:04 CEST

Almost all customers that use the gsuite connector have asked for the possibility to connect existing gsuite users to existing ucs users.

That is possible through the following process (which is way to complicated to do manually):

* From the user ressource of the gsuite user get the properties "ID" and "primaryEmail" and store them in the UCS LDAP in the users attributes univentionGoogleAppsObjectID and univentionGoogleAppsPrimaryEmail respectively.
* This can only be done through a UDM hook or direct LDAP modification, because those UDM properties have been configured to be unchangeable.

Solution: Create a script that helps users configure an existing gsuite user for a ucs user, in a semi-manual way:

* action 1: list existing gsuite users
** optionally filter names for directories with lots of users
** column with ucs usernames
** filter to list only users that are not known to ucs
* action 2: connect existing gsuite user with existing ucs user
** store required information in ucs ldap
** optionally initiate an immediate sync ucs-user → gsuite-user

The code for both actions already exist for the most part in component/univention-google-apps/print_google_users_and_groups.py and univention.googleapps.listener.