Introduction
The LDAP Role Assignment Data Provider allows you to import role assignment based on Active Directory group memberships.
Configuration Parameters
ConnectionParameters
The connection parameter for the Active Directory connection.
GetResourceFilter
This LDAP filter will be executed to load all Active Directory groups that should be used within the mapping of Active Directory groups to CoreOne Suite Role Assignments.
| Code Block |
|---|
(&(objectClass=group)(|(ou:dn:=Chicago)(ou:dn:=Miami))) |
ForeignIdValueProcessors
A list of value processors that will be used to resolve the foreign id.
MemberIdProperty
The property of the Active Directory that is member of an Active Directory group that should be used to search the user within the CoreOne Suite Meta Directory. For example samAccountName.
MemberPropertiesToLoad
Which properties of the Active Directory group members should be loaded from Active Directory. For example:
| Code Block |
|---|
"SamAccountName", "sn", "cn" |
MemberSearchPath
If you would like to narrow down the list of user to take into consideration you can restrict it by a memberSearchPath so that only users that are stored below this seach path are considered.
ResourceIdProperty
Which property identifies a resource, for example samAccountName.