cancel
Showing results for 
Search instead for 
Did you mean: 

LDAP integration and how to test LDAP queries

New Contributor

LDAP integration and how to test LDAP queries

Good evening all,

 

I'm trying to use LDAP Groups to map Person groups on HOPEX V2R1. We use the LDAP implementation from a famous vendor, which uses a runtime-calculated operational attribute (say vendor-allgroups) to define memberships while MS AD uses memberof attribute.

 

Our configuration is not working, also using this filter in LDAP _Settings:

 

[LdapFilter]

GroupFilter=vendor-allgroups

 

that is derived from the AD _Settings (that check nested groups):

 

GroupFilter=memberOf:1.2.840.113556.1.4.1941:

 

I think that I need a setting that allows HOPEX to search for operational attributes or to define returned attributes. I also think that a tool to test LDAP queries is needed and a log for such requests.

 

Anyone would give me a suggestion? Thank you very much to all.