Follow

Stratusphere LDAP/AD Import - Import Only Specific Groups and Members

Product: Stratusphere FIT/UX         

Product Version: All

Expires on: 365 days from publish date

Updated: March 29, 2016

 

Stratusphere LDAP/AD Import - Import Only Specific Groups and Members:


First set up basic LDAP/AD import as specified in this KB: https://liquidwarelabs.zendesk.com/entries/108118003-Basic-Stratusphere-LDAP-AD-Import-Procedure

Once you have the basic LDAP/AD import set, we can set the User Search Filter, User Search Base, Group Search Filter, and Group Search Base to import specific groups and their members.

First, identify the users and the groups you want to import, and locate their distinguished names.  For example, I want to import group called Stratusphere Administrators and VMware Administrators and their members only.  Stratusphere Administrators group it has members John Smith and Mary Johnson, and VMware Administrators group has Mike Williams and Robert Brown.  I list out their distinguished names to identify how I set my user/group search filter and search base: 

Stratusphere Administrators: cn=Stratusphere Administrators, ou=Application Administration, ou=IT Department, dc=example, dc=com
VMware Administrators: cn=VMware Administrators, ou=Infrastructure Administration, ou=IT Department, dc=example, dc=com
John Smith: cn=John Smith, ou=IT Team, ou=NYC, ou=Branches, dc=example, dc=com
Mary Johnson: cn=Mary Johnson, ou=IT Team, ou=DC, ou=Branches, dc=example, dc=com
Mike Williams: cn=Mike Williams, ou=IT Team, ou=NYC, ou=Branches, dc=example, dc=com
Robert Brown: cn=Robert Brown, ou=IT Team, ou=DC, ou=Branches, dc=example, dc=com
 

The config should look like the following (changes are in bold):

In Directory Properties:

Base DN: dc=example, dc=com  (as this is the only common part between the users and the groups)

Under Advanced User and User Group Properties:

User Search Filter: (&(objectClass=person)(!(objectClass=computer))(!(objectClass=contact))(|(memberOf=cn=Stratusphere Administrators, ou=Application Administration, ou=IT Department, dc=example, dc=com)(cn=VMware Administrators, ou=Infrastructure Administration, ou=IT Department, dc=example, dc=com)))  (add in member of Stratusphere Administrator group OR member of VMware Administrators group)
User Search Base: ou=Branches  (users' common path above base DN)
Group Search Filter: (&(objectClass=group)(|(cn=Stratusphere Administrators)(cn=VMware Administrators)))  (Search and only import groups named Stratusphere Administrator OR VMware Administrator)
Group Search Base: ou=IT Department  (groups' common path above base DN)


Enter your Administrator Password again and click on Save Changes.  Import the users again and you will see only the specified groups and their members imported

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Article is closed for comments.