IBM Connections: Restricting user population using a LDAP Group: Difference between revisions
(Criou página com: 'Some customers request for restricting user population to IBM Connections bases using a LDAP Group. You can use IBM Connections TDI Solution to solve this request. Creating ...') |
|||
Line 5: | Line 5: | ||
=Procedure = | =Procedure = | ||
LDAP Server is IBM Tivoli Directory Server and | In this example LDAP Server is IBM Tivoli Directory Server and group is MyGroup1: | ||
1) Open '''profiles_tdi.properties''' and look for source_ldap_search_filter. | 1) Open '''profiles_tdi.properties''' and look for source_ldap_search_filter. | ||
Line 14: | Line 14: | ||
#source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)) | #source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)) | ||
source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson) | source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)(memberOf=cn=MyGroup1,ou=dept01,o=company)) | ||
3) Change on profiles_tdi.properties | 3) Change on profiles_tdi.properties | ||
Line 26: | Line 26: | ||
sync_all_dns.sh | sync_all_dns.sh | ||
== For 2 or more groups == | |||
2) Make a copy of this line, comment and add the groups | |||
source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)(|(memberOf=cn=MyGroup1,ou=dept01,o=company)(memberOf=cn=MyGroup2,ou=dept01,o=company)) | |||
= Ver também = | = Ver também = |
Latest revision as of 12:29, 1 June 2016
Some customers request for restricting user population to IBM Connections bases using a LDAP Group.
You can use IBM Connections TDI Solution to solve this request. Creating a ldap filter that restrict population, based if a user is member of a group.
Procedure
In this example LDAP Server is IBM Tivoli Directory Server and group is MyGroup1:
1) Open profiles_tdi.properties and look for source_ldap_search_filter.
source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson))
2) Make a copy of this line, comment and add the groups
#source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)) source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)(memberOf=cn=MyGroup1,ou=dept01,o=company))
3) Change on profiles_tdi.properties
sync_delete_or_inactivate=delete
Save and close the file
4) Now run
sync_all_dns.sh
For 2 or more groups
2) Make a copy of this line, comment and add the groups
source_ldap_search_filter=(&(uid=*)(objectclass=inetOrgPerson)(|(memberOf=cn=MyGroup1,ou=dept01,o=company)(memberOf=cn=MyGroup2,ou=dept01,o=company))
Ver também
- Mais Artigos sobre IBM Connections IBM Connections