By: Babu Angina user 03 Dec 2018 at 2:47 p.m. CST

3 Responses
Babu Angina gravatar
Hello. We configured the Gluu Cache refresh to use the Microsoft AD as our remote directory server . We are able to refresh and authenticate using users. But we can not refresh the groups from the AD server. We are using the gluu server version 3.1.0. If I change the objectClass to top from person i am seeing the groups from AD as users in gluu which is incorrect i believe. I think the way to refresh the groups is the memberOf users. Are there any configurations or scripts to be updated to refresh the groups seperately from the config shown below. providing the cache refresh configuration below seeking help for further proceeding to fix the issue. Cache Refresh Configuration: Source Backend LDAP Servers: Name: source Max connections: 10 Base DN: CN=Users,DC=drced,DC=local Customer Backend Key/Attributes: Key attribute: sAMAccountName Object class: person Source Attribute: cn,sn.mail,memberOf Cache Refresh Refresh Method: Copy Add source attribute to destination attribute mapping: samaaccountname->uid, cn->cn, sn->sn, mail->mail, memberOf-> memberOf Polling interval (minutes): 2 Server IP address: Snapshots count: 10 Search size limit:1000 Cache Refresh: enabled

By William Lowe staff 03 Dec 2018 at 2:58 p.m. CST

William Lowe gravatar
Hi Babu, This isn't a supported feature for Cache Refresh. Thanks, Will

By Babu Angina user 03 Dec 2018 at 3:16 p.m. CST

Babu Angina gravatar
Hi Will, Thanks for the quick response. I have a question then what is the memberOf attribute used for. And how the SAML integration for for the groups from the Gluu server works. Any suggestions? Thanks, Babu

By Michael Schwartz staff 03 Dec 2018 at 3:46 p.m. CST

Michael Schwartz gravatar
Buy a support contract and we can give you lots of consultative tips.