[lsc-dev] [LDAP Synchronization Connector - Feature #338] Sync memberships with memberOf instead of the member attribute with AD

noreply at lsc-project.org noreply at lsc-project.org
Tue Sep 11 10:26:52 CEST 2012


Issue #338 has been updated by Clément OUDOT.


I don't know, try it...

Maybe the best approach is to code it as a plugin, like the NIS plugin.
----------------------------------------
Feature #338: Sync memberships with memberOf instead of the member attribute with AD
http://tools.lsc-project.org/issues/338

Author: Stéphane Bond
Status: Assigned
Priority: Low
Assigned to: Sébastien Bahloul
Category: Core
Target version: trunk


On ActiveDirectory, the groups of a user are available using the memberOf attribute. However, to add or remove a membership, you need to sync the complete list of members on every group. To simplify the sync of a single user object, it would be useful to compare the "memberOf" attribute with the source and apply the changes on groups if required.

We contribute a custom dst service for AD. It intercepts modifications on the memberOf attribute and applies the required changes on groups. To use it, just change the "destinationService" class to "org.lsc.configuration.objects.services.DstActiveDirectory".

Stéphane


-- 
You have received this notification because you have either subscribed to it, or are involved in it.
To change your notification preferences, please click here: http://tools.lsc-project.org/my/account
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lsc-project.org/pipermail/lsc-dev/attachments/20120911/c0e6f273/attachment-0001.htm>


More information about the lsc-dev mailing list