Help

LDAP Mappings - Groups - Search Base

Go to solution
tthurman
Contributor III

Posted on ‎06-19-2014 02:55 PM

Hey all,

I'm having trouble with getting my search base working on my new server. However, it only seems to be with User Group Mappings.

My (current) JSS server is on 8.73 and it works fine but with the new 9.3 it seems to not be working with the identical settings.

I don't know much about AD or LDAP. However, I decided to run a few dscl commands to see if I could see a difference.

So, my primary example is with a group named "gEUE."

When I do a read of it in dscl it comes up with this as it's base path:

dsAttrTypeNative:distinguishedName:
 CN=gEUE,OU=Groups,OU=World Headquarters,OU=Office Locations,DC=northamerica,DC=cerner,DC=net

My search base on both servers is:

OU=Office Locations,DC=northamerica,DC=cerner,DC=net

but for some reason it doesn't find anything.

EDIT: I suppose I should also say that it searches fine for users, just not for groups.

Anyone have any thoughts?

0 Kudos
Reply
1 ACCEPTED SOLUTION

Go to solution
tthurman
Contributor III

Posted on ‎06-20-2014 01:28 PM

Had a support call with JAMF. It seems that when I manually created it, it didn't generate properly.

Deleting it and re-adding a new one worked.

View solution in original post

0 Kudos
Reply
3 REPLIES 3

Go to solution
bentoms
Release Candidate Programs Tester

Posted on ‎06-19-2014 03:46 PM

I've a couple of posts on setting this up & using Directory Utility to get the correct mappings, hope it helps: http://macmule.com/2014/05/04/submit-user-information-from-ad-into-the-jss-at-login-v2/

Reply

Go to solution
tthurman
Contributor III

Posted on ‎06-20-2014 06:10 AM

So, I guess the main question I'm having is if there is something different between 8.7 and 9.3 LDAP server settings in JSS?

All of the settings are identical from my 8.7 server and my 9.3 server. I can search for users but when I try to search for groups it doesn't find anything. On my 8.7 server, however, I can search for both users and groups - with no problems.

This makes me think that there is something different between the two servers, but I'm not sure what.

0 Kudos
Reply

Go to solution
tthurman
Contributor III

Posted on ‎06-20-2014 01:28 PM

Had a support call with JAMF. It seems that when I manually created it, it didn't generate properly.

Deleting it and re-adding a new one worked.

0 Kudos
Reply