Availability:

This feature was introduced in M2000 V200R010.

Summary:

The M2000 provides a remote and centralized user management interface. Using this interface,
telecom operators connect their own user management platforms to the M2000 to create,
query, modify, delete, and authorize users. 

Benefits:

This feature provides a centralized user management interface, perfects the user management
and audit system of the telecom operator, and improves the user security.

Description:

The M2000 provides a remote and centralized user management interface (for management of
M2000 user and user groups, excluding operating system users) based on the standard
Lightweight Directory Access Protocol (LDAP). This interface is used for the integration
between  Authentication, Authorization, and Accounting (AAA) and the M2000 so that the
telecom operators can create, modify, delete, or query M2000 users, or change M2000 user
status on the AAA. This interface supports SSL-based encrypted transmission, which can be
configured based on telecom operators requirements.

The M2000 provides a declaration pertaining to users and user groups in a table to ensure the

correct transfer of user information between the application system of the M2000 and the user
management system of the telecom operator.

The AAA of a telecom operator can periodically synchronize the user account information

such as user names, passwords, and user groups with the account information about the
M2000. The LDAP-based centralized user management interface is used to implement the
synchronization.

The M2000 can also synchronize user group information from the AAA so that users can

manage the user accounts on the entire network in a centralized manner. Telecom operators
can set and load the user and user group information on the M2000 through the LDAP.

Enhancement:

None

Dependency:

None

Its a great one.

Keep it up

Excellent topic