Help

LDAP Mappings with AD on JSS

Kedgar
Contributor

Posted on ‎01-27-2010 12:17 AM

Hello,

I'll most likely open a support ticket for this as all organizations are probably different.

We use Active Directory and I have yet to be able to add a group from AD and grant it access to the JSS. The problem I think is the "Map Member Users To" portion. I believe the attribute should be member, however when testing it never shows an account being a member of a group.

Any suggestions?

![external image link](attachments/3f1c746649654b19b8bc4e7c917d7364)

0 Kudos
Reply
4 REPLIES 4

talkingmoose
Moderator
Moderator

Posted on ‎01-27-2010 12:26 AM

If it helps, our settings are practically identical to yours, except that
On 1/27/10 2:17 PM, "Edgar, Ken" <ken.edgar at gmail.com> wrote:
the "Map Member Users to" field is empty for us.

Our Search Base also includes "OU=Groups,". Include this in your Search
Base:

OU=Groups,DC=ad,DC=schoolspecialty,DC=com

--

William Smith
Technical Analyst
Merrill Communications LLC
(651) 632-1492

0 Kudos
Reply

bentoms
Release Candidate Programs Tester

Posted on ‎01-27-2010 12:37 AM

I did this earlier..

Think I needed to tick used distinguished name & create a new LDAP that looked across the root of our domain.

Regards,

Ben.

0 Kudos
Reply

Kedgar
Contributor

Posted on ‎01-27-2010 12:40 AM

William, looks like the map to users field is empty by default... but it didn't seem to work when I did the test if a user is a part of a group. Our groups are also all over the place in different OU's so I can't point to OU=Groups unfortunately.

Thank you

0 Kudos
Reply

bentoms
Release Candidate Programs Tester

Posted on ‎01-27-2010 01:18 PM

Np.

Good thing it was fresh in my mind.

Regards,

Ben.

0 Kudos
Reply