Question

2
Replies
266
Views
federicoj Member since 2018 1 post
Sun Life Financial
Posted: 2 years ago
Last activity: 2 years 4 months ago
Closed

How to create an Authentication service that maps Org/Div/Unit from the LDAP distinguished name?

Hi

I have already configured the authentication service WebLDAP1. However I cannot complete the Operator ID attribute mapping because our LDAP servers (MS Active Directory) does not have attributes that can directly map to Org, Div and Unit.

Our Active Directory does reflect our organizational chart but the structure is only available in the LDAP hierarchy. For example, our users have the following fully distinguished name:

CN=testAccount, OU=dept1, OU=division1, DC=company, DC=com

So we do have the organizational information for the Org, Div and Unit as follows:

Org -> company.com
Div -> division1
Unit -> dept1

However these information are not available as LDAP "attributes" themselves.

How can we configure an Authentication service to use the LDAP hierarchy to map the account to the correct Operation ID?

Security System Administration
Moderation Team has archived post
Share this page LinkedIn