Defining webtops for LDAP with DSI doesn't work
Hi,
I'm using LDAP successfully as my login authority.
I'm trying to define custom webtop for certain groups in my organization with no success although I follow the instructions exactly :
http://docs.sun.com/source/819-4309-10/en-us/base/standard/using_dsi.html
Any idea how to debug this issue ?
Also I would like to understand the right way to add persons from LDAP to global administrators group.
Thanks a lot,
Zeev
[470 byte] By [
zeevf] at [2007-11-26 6:36:43]
# 4
The user u are adding using DSI should be in this formatcn=<user name>,ou=<users' group>,dc=<domain>,dc=comHope this is of some help.Zainab
# 5
Hi,
I've realized what's the problem but I don't know how to solve it.
When Secure Global Desktop searches for members of LDAP groups it searches for users in the uniquemember, member, and uniqueMember attributes on group objects.
On our LDAP server , the members are in different object ( memberUid ) then those mentioned above.
Here is the list of relevant attributes :
tarantella config list --com.sco.jndi.toolkit.utils.LDAPUserCollection.properties
cacheLifeTime: 600000
directAttributes: { uniquemember, member, uniqueMember, memberUid }
flushCacheTimeoutMs: 43200000
groupAttributes: { uniquemember, member }
groupMatches: { !uid=* }
maximumGroupDepth: 0
nameConverter: 0
reverseAttributes: { nsroledn, memberOf }
searchAttributes: { memberurl }
userShortAttributes: { <No elements in the array> }
As you can see , I've added the memberUid to the directAttributes but it's still doesn't help.
Please help :)
Thanks
Zeev
zeevf at 2007-7-6 14:45:30 >
