we have a windows Active Directory want to sync to Documentum and create SSO as well. Since the AD group setup are nested, and knowing DCTM do not support nested LDAP (not sure if it suport on D6.7SP1, we are using this version). So, I want to know if there is any comon way to sync the user and groups to DCTM? or any best practice on such situation.
Also, in general, how many LDAP rules I can create? As I know the AD here breakdown into fine groups... If DCTM can only sync the group one by one, I may have to create a lot of rules to get all users.
