Hi all,
What is the format of group input in LDAP (Active Directory) configuration?
I’ve tried to put only group name but it doesn’t work. When i syncronize users it gets all the users from DN not only group member.
DN= “cn=users,dc=corp,dc=local”
Group = “aSecurityGroup”
Thanks
OK. I found the solition.
I just left the group field blank and changed this line in the Controller’s onApplicationInit event:
$filter = “(|(samaccountname=)(uid=)(userprincipalname=*))”;
to
$filter = “(&(memberOf=cn=aSecurityGroup,cn=users,dc=corp,dc=local)(|(samaccountname=)(uid=)(userprincipalname=*)))”;
Hi,
can you explain that for “is user xyz member of group finance on domain corp.local”? I did not get it yet …
Thanks.
Hi Reinhard,
If we accept that user xyz is not in a organisation unit and he/she is a member of finance security group and our domian DN is corp.local. Filiter value must be like this:
$filter = “(&(memberOf=cn=finance,cn=users,dc=corp,dc=local)(|(samaccountname=)(uid=)(userprincipalna me=*)))”;
You may find and change this variable in your controller onApplicationInit etc.