Reason to add further base dn under manage authentication screen

By: richard abbott user 07 Jun 2019 at 10:14 a.m. CDT

3 Responses
richard abbott gravatar
What is the reason to allow further base dn's to be added in the gluu Admin LDAP Managed Authenticatin configuration screen? "Base DN: Add base DNs in this field to allow the Gluu Server to connect and search the LDAP server. Every directory tree should be added separately using the Add Base DN option" sorry if this sounds a silly question.......
Ubuntu 16.04
closed

Answers

By Aliaksandr Samuseu staff 07 Jun 2019 at 1:16 p.m. CDT

Copy
Aliaksandr Samuseu gravatar
Hi, Richard. You add more base DNs if you want oxAuth to consider those locations when it verifies credentials of an user attempting to log in as well (for example, in your AD domain there are several OUs, and users you need are distribute over all of them; so you add them all as base DNs there). So in such case oxAuth will first search under base_DN1, then under base_DN2 and so on - until it will find first user with key attribute matching the one that was submitted by user as "Username" at web UI's login form. Natrually, if you use Cache Refresh as well (what is normally the case), you need to add those extra base DNs to its configuration as well.

By Michael Schwartz Account Admin 08 Jun 2019 at 4:34 a.m. CDT

Copy
Michael Schwartz gravatar
I'm not even 100% sure which screen you are asking about. It might be helpful if you uploaded the screenshot somewhere and provided a link to it.

By richard abbott user 10 Jun 2019 at 5:42 a.m. CDT

Copy
richard abbott gravatar
Bigs thanks ........great service as always.
Video or screenshot link

Post an answer