By: valsaraj viswanathan user 08 Feb 2018 at 12:47 a.m. CST

5 Responses
valsaraj viswanathan gravatar

I have synced used data fron source LDAP to Gluu. But how to map the user roles in source LDAP to Gluu?

By mohib zico staff 08 Feb 2018 at 12:57 a.m. CST

mohib zico gravatar

'role' is nothing but attribute with data ( correct me if I am wrong, I am not aware of your infrastructure ); so it should same as other attribute mapping.

By valsaraj viswanathan user 08 Feb 2018 at 3:16 a.m. CST

valsaraj viswanathan gravatar

I am checking whether anything like this: http://blog.keycloak.org/2015/08/improved-ldap-integration-with-keycloak.html available in Gluu?

By mohib zico staff 08 Feb 2018 at 3:34 a.m. CST

mohib zico gravatar

ok... yes it's same as mapping attribute which has 'role' value in your backend AD.

Most of the case, 'memberOf' attribute is used for 'role'. Just map memberOf.. that will do.

By valsaraj viswanathan user 08 Feb 2018 at 3:36 a.m. CST

valsaraj viswanathan gravatar

But role is under different sub tree called groups and users are under people. Then these roles are added to memberOf of user.

By mohib zico staff 08 Feb 2018 at 3:38 a.m. CST

mohib zico gravatar

'subtree' can't be pulled by bypassing DN from Gluu Server in out of the box solution.