AD/LDAP

In the AD/LDAP tab, you can edit the active directory (or LDAP) connection. The tab also contains a button that can be used to force synchronization. Reading and synchronization occur every 10 minutes.

In the AD/LDAP settings, you can specify a user/group scheme to support most services.

There is a way to add users to AD from one group only.

Note

User Schema:

An example of a filter for users from one group:

(&(objectCategory=Person)(sAMAccountName=*)(memberOf=CN=Group-Michael,OU=Michael-test,OU=subsection2,OU=Susbsection1,DC=mtest,DC=com))

An example of a filter that adds users from nested groups:

(&(objectCategory=Person)(sAMAccountName=*)(memberOf:1.2.840.113556.1.4.1941:=CN=Group-Michael,OU=Michael-test,OU=subsection2,OU=Subsection1,DC=testgear,DC=com))

Group Schema:

A filter for one group (the name starts with):

(&(objectCategory=group)(name=Group-Michael*))

In the AD/LDAP connection section, you can create multiple connections or make a default connection.

The default connection will be displayed on the login page as the primary connection.