Can wildcard character (*) be used in LDAP directory group names to synchronize Spotfire Server's user directory with LDAP directories?

When configuring LDAP directory groups to be synchronized with Spotfire Server's user directory, one needs to specify either (a) the LDAP group account names or (b) the distinguished names. The account names and the distinguished names may contain an asterisk (*) as a wildcard character. This wildcard behaves just like the asterisk wildcard in standard LDAP search filters.

It is also possible to specify the distinguished name of an LDAP container containing one or more groups. All those groups will then be synchronized. It is possible to mix all variants.

Documentation reference:

https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/group_synchronization.html

Additional notes regarding group synchronization:

- Synchronized LDAP groups cannot be manually modified in the Spotfire Server user directory.
- Synchronized LDAP groups can be placed into manually created Spotfire user groups (in the Spotfire Server user directory), and thereby be granted appropriate permissions.
- If an LDAP group has been synchronized and it is removed from the list of groups to synchronize, it keeps the members (Spotfire users) from the last synchronization, but becomes an ordinary group that can be modified in Spotfire Server's admin interface.