Hyland Connect

sem · ‎04-16-2013

Hi

Ive got 4.2.d nightly installed as a test and have LDAP (active directory) authentication enabled. I'm currently using synchronization.authCreatePeopleOnLogin=true so that when a new user logs into Share for the first time, an account is created for them - we can then add users to groups as required.

Not using LDAP sync because the AD structure we have doesn't lend itself to DM roles and groups.

QUestion - right now, when an account is created, the username is set to the AD/Windows logon name fine. The alfresco user then has the "firstname" set the same. No other details (full name/ display name/ email etc) are populated.

Is it possible to do this without using a full LDAP sync?

mark

mrogers · ‎04-19-2013

No - I don't think there is a configuration option to just sync the user's attributes. It would be a fairly easy enhancement though.

sem · ‎04-19-2013

Hi - thanks for the reply. It would be really useful in (I'm sure) a lot of environments. I'm really pleased with how the LDAP authentication worked so far - and it's cool that an Alfresco user account can be created on the fly, at first login.

Is this something that could be put in as a feature request somewhere?

mark

sem · ‎09-03-2013

Hi. Regarding the query in this thread, does anyone have an idea which file (authentication subsystem?) that I could look at and at least get the email address populated from the AD information?

Latest 4.2.d (stable) doesn't change the way accounts are auto-created.

sem

Hyland Connect

AD/LDAP Authentication account creation without Sync