04-15-2015 03:51 PM
we recently deployed Nuxeo using LDAP creating groups and users however when as an Admin I view the LDAP groups listed in CN=nuxeo-members,OU=Nuxeo,OU=Security Groups,OU=MyBusiness,DC=domain,DC=local and they are empty. Should they be?
We have nested LDAP groups are referenced in the nuxeo-members group: -->Department SEC -->Department --> User accounts so I did my user searching via nested groups. Below is our nuxeo.conf sanitized dump
nuxeo.force.generation=true
nuxeo.wizard.done=true
nuxeo.templates=mysql,drive
nuxeo.db.name=nuxeo_db
nuxeo.db.password=password
nuxeo.db.user=nuxeo_db_user
nuxeo.directory.type=ldap
nuxeo.ldap.binddn=CN=ldaplookup,OU=Services,OU=Users,OU=MyBusiness,DC=domain,DC=local
nuxeo.ldap.bindpassword=password
nuxeo.ldap.defaultAdministratorId=Admin
nuxeo.ldap.group.mapping.label=description
nuxeo.ldap.group.mapping.name=sAMAccountName
nuxeo.ldap.group.mapping.rdn=OU=Nuxeo,OU=Security Groups,OU=MyBusiness
nuxeo.ldap.group.searchBaseDn=OU=Nuxeo,OU=Security Groups,OU=MyBusiness,DC=domain,DC=local
nuxeo.ldap.group.searchFilter=(objectClass=*)
nuxeo.ldap.group.searchScope=subtree
nuxeo.ldap.url=ldap://dc1.archergroup.local:389
nuxeo.ldap.user.mapping.email=mail
nuxeo.ldap.user.mapping.firstname=givenName
nuxeo.ldap.user.mapping.lastname=sn
nuxeo.ldap.user.mapping.password=userPassword
nuxeo.ldap.user.mapping.rdn=cn
nuxeo.ldap.user.mapping.username=sAMAccountName
nuxeo.ldap.user.searchBaseDn=OU=SBSUsers,OU=Users,OU=MyBusiness,DC=domain,DC=local
nuxeo.ldap.user.searchClass=user
nuxeo.ldap.user.searchFilter=(&(objectClass=person)(memberOf:1.2.840.113556.1.4.1941:=CN=nuxeo-members,OU=Nuxeo,OU=Security Groups,OU=MyBusiness,DC=domain,DC=local))
nuxeo.ldap.user.searchScope=subtree
nuxeo.user.anonymous.enable=false
nuxeo.user.emergency.firstname=Nuxeo
nuxeo.user.emergency.lastname=Administrator
nuxeo.user.emergency.password=password
nuxeo.user.emergency.username=nuxeoadministrator
nuxeo.user.group.storage=default
org.nuxeo.dev=false
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.