Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to configure Nuxeo with dynamic groups in OpenLDAP?

Go to answer
Clément_Lardeur
Confirmed Champ
Confirmed Champ

‎02-13-2012 05:55 AM

I connected OpenLDAP to Nuxeo 5.5 but there's still one problem with the configuration. Users who belong to a dynamic group are not associated to them but are well associated to theirs static group.

Configuration files:

  • default-ldap-users-directory-bundle.xml
  • default-ldap-groups-directory-bundle.xml

Some precisions:

Dynamic or static groups contains a 'member' attribute which is a list of string.

member = [uid=idUser1,ou=users,dc=companyName,dc=com; uid=idUser2,ou=users,dc=companyName,dc=com; ...]

Users do not have 'memberOf' attribute.

Dynamic groups are 'objectClass = groupOfNames', static groups are 'objectClass = groupOfURLs'.

Thx for helps.

1 ACCEPTED ANSWER

Go to answer
Olivier_Grisel
Star Contributor
Star Contributor

‎02-13-2012 09:37 AM

The field for dynamic groups for groupOfURLs generally memberURL. In the tests folder of the source code you can find an example of a configuration where both dynamic and static groups are revolved. There is also a sample groups definition to illustrate how those entries look like.

The important lines are:

    <ldapReference field="members" directory="userDirectory"
      staticAttributeId="uniqueMember" dynamicAttributeId="memberURL" />

    <ldapReference field="subGroups" directory="groupDirectory"
      staticAttributeId="uniqueMember" dynamicAttributeId="memberURL" />

View answer in original post

2 REPLIES 2

Go to answer
Olivier_Grisel
Star Contributor
Star Contributor

‎02-13-2012 09:37 AM

The field for dynamic groups for groupOfURLs generally memberURL. In the tests folder of the source code you can find an example of a configuration where both dynamic and static groups are revolved. There is also a sample groups definition to illustrate how those entries look like.

The important lines are:

    <ldapReference field="members" directory="userDirectory"
      staticAttributeId="uniqueMember" dynamicAttributeId="memberURL" />

    <ldapReference field="subGroups" directory="groupDirectory"
      staticAttributeId="uniqueMember" dynamicAttributeId="memberURL" />

Go to answer
Clément_Lardeur
Confirmed Champ
Confirmed Champ
In response to Olivier_Grisel

‎02-13-2012 11:09 AM

Thx this is it!!!

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC