Uploaded image for project: 'Observium'
  1. Observium
  2. OBS-2825

LDAP: Support custom memberOf attribute

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Fixed
    • Trivial
    • None
    • Professional Edition
    • Authentication
    • Observium r9628

    Description

      The current LDAP authentication module in Observium does support custom names for a specific set of attributes (uid, uidNumber, cn, dn), but is lacking support for providing a custom attribute name for memberOf.

      Our company is using a customized LDAP scheme which maps the users roles into one or more AppRoleDN attributes. This makes it currently impossible to properly use Observium, as the built-in user list always appears empty due to the inexistant memberOf attribute(s).

      This patch adds a new configuration option $config['auth_ldap_attr']['memberOf'] which allows Observium to look for a different attribute name instead of the hardcoded memberOf attribute. It has been successfully tested in our environment against both stable and trunk.

      Attachments

        Issue Links

          is mentioned by

          Improvement - An improvement or enhancement to an existing feature or task. OBS-2829 LDAP: Support reverse group membership lookup

          • Trivial - Cosmetic problem like misspelt words or misaligned text.
          • Closed

          Activity

            People

              sid3windr Tom Laermans
              snapserv Pascal Mathis
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: