By: Janis Kulins user 22 Aug 2022 at 9:18 a.m. CDT

4 Responses
Janis Kulins gravatar
Hello, there is Import People functionality in Gluu GUI. Is there any possibility to add imported users to specific group? I tried to add "memberof" parameter to user data, but it seem like specific imported user record should also bee present in Group sheme. Thank you.

By Michael Schwartz Account Admin 22 Aug 2022 at 10:19 a.m. CDT

Michael Schwartz gravatar
In Gluu 4, there is a feature called "Cache Refresh", https://gluu.org/docs/gluu-server/4.4/user-management/ldap-sync/ That could be one way.

By Aliaksandr Samuseu staff 22 Aug 2022 at 11:58 a.m. CDT

Aliaksandr Samuseu gravatar
Hi, Janis. There are few options. As Michael pointed out above, if the source of your users is some kind of external LDAP server, you could use Cache Refresh in Gluu to import the users, and custom scripts to transform their attributes any way you like. As for your situation, if you have to add them via Import feature, you could try to write custom script of "Update user" type you can find on the similar named tab at "Configuration" > "Manage Custom scripts" page. Please note that writing custom scripts isn't covered by Community Support. It shouldn't be hard to figure it out though, if you are familiar with Java and Python.

By Michael Schwartz Account Admin 22 Aug 2022 at 6:02 p.m. CDT

Michael Schwartz gravatar
Right, they could use the Cache Refresh script and populate the `role` attribute or the `memberOf` attribute. BTW, we disable referential integrity by default in OpenDJ ``` dn: cn=Referential Integrity,cn=Plugins,cn=config cn: Referential Integrity ds-cfg-attribute-type: member ds-cfg-attribute-type: uniqueMember ds-cfg-enabled: false ds-cfg-invoke-for-internal-operations: true ds-cfg-java-class: org.opends.server.plugins.ReferentialIntegrityPlugin ds-cfg-plugin-type: postOperationDelete ds-cfg-plugin-type: postOperationModifyDN ds-cfg-plugin-type: subordinateDelete ds-cfg-plugin-type: subordinateModifyDN objectClass: ds-cfg-plugin objectClass: ds-cfg-referential-integrity-plugin objectClass: top ```

By Janis Kulins user 13 Sep 2022 at 2:28 a.m. CDT

Janis Kulins gravatar
Hello, sorry for delay. Thank you for ideas. Unfortunately is not ldap/ad compatible system we need to import users from. So we cannot use cache refresh. Update user custom script was also considered as option. In the end we decided to write small app for enduser import, which use SCIM API.