LDAP Role Assignment Data Provider Configuration

Introduction

The LDAP Role Assignment Data Provider allows you to import role assignment based on Active Directory group memberships.

Configuration Parameters

ConnectionParameters

The connection parameter for the Active Directory connection.

GetResourceFilter

This LDAP filter will be executed to load all Active Directory groups that should be used within the mapping of Active Directory groups to CoreOne Suite Role Assignments.

(&(objectClass=group)(|(ou:dn:=Chicago)(ou:dn:=Miami)))

ForeignIdValueProcessors

A list of value processors that will be used to resolve the foreign id.

MemberIdProperty

The property of the Active Directory that is member of an Active Directory group that should be used to search the user within the CoreOne Suite Meta Directory. For example samAccountName.

MemberPropertiesToLoad

Which properties of the Active Directory group members should be loaded from Active Directory. For example:

"SamAccountName", "sn", "cn"

MemberSearchPath

If you would like to narrow down the list of user to take into consideration you can restrict it by a memberSearchPath so that only users that are stored below this seach path are considered.

ResourceIdProperty

Which property identifies a resource, for example samAccountName.

 

© ITSENSE AG. Alle Rechte vorbehalten. ITSENSE und CoreOne sind eingetragene Marken der ITSENSE AG.