>> I wonder whether a new user can be assigned automatically to a suitable group based on information of the new user stored in the Source Backend LDAP Server during the Cache Refresh operation. Couple of things to consider here: - Do you really want to do it? Because adding more people in your Gluu Server admin group will make it harder to audit their task later on. And basically adding one user in admin group is 3 sec job for any admin but Gluu Server administrator will know who is there and who is not. - When will this operation happen? - During Cache Refresh? - After Cache Refresh? All users are inside Gluu Server and you need some method which will iterate user's record and perform appropriate methods. In any case, you might wanna check two types of scripts: - [Cache Refresh script](https://gluu.org/docs/ce/3.0.1/admin-guide/custom-script/#cache-refresh) - [Update User script](https://gluu.org/docs/ce/3.0.1/admin-guide/custom-script/#update-user)

> Do you really want to do it? Because adding more people in your Gluu Server admin group will make it harder to audit their task later on. And basically adding one user in admin group is 3 sec job for any admin but Gluu Server administrator will know who is there and who is not. - We are not going to have all people assigned to the Gluu Server Admin Group. Only selected users will be assigned. - Instead of having the assignment done manually by an existing Gluu Server administrator, we would like to have the assignment completed automatically during Cache Refresh according to certain data in the source backend AD server. > - When will this operation happen? - During Cache Refresh? Ideally, it is completed during Cache Refresh. > After Cache Refresh? All users are inside Gluu Server and you need some method which will iterate user's record and perform appropriate methods. In any case, you might wanna check two types of scripts: - Cache Refresh script - Update User script Thanks for the advice, I shall study those two types of scripts.