我有一个LDAP服务器(自定义),该服务器在用户查询时返回以下信息:
❯ ldapsearch -x -h 127.0.0.1 -p 9389 -D cn=worker1,ou=users -w workinghard -b 'ou=users'
# extended LDIF
#
# LDAPv3
# base <ou=users> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# worker1, users
dn: cn=worker1,ou=users
cn: worker1
sAMAccountName: worker1
email: worker1@bigorg.com
mail: worker1@bigorg.com
userPrincipalName: worker1@users
objectClass: posixAccount
memberof: cn=bigorg,ou=orgs
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
“人工LDAP组”页面在“动态映射”方面提到以下内容:
Dynamic: User objects are aware of what groups they belong to, but the group objects are not aware of their members.
Each user object contains a custom attribute, such as group, that holds the group DNs or group names of which the user is a member.
参考:https://www.jfrog.com/confluence/display/RTF/LDAP+Groups
Artifactory UI中的以下条目应该是什么?
1. Group Member Attribute
2. Group Name Attribute
3. Filter
设置以下内容无效:
1. memberof
2. cn
3. objectClass: posixAccount
动态映射应该对用户输入有效吗?但是从用户界面看来,它似乎仅适用于组成员。
这是我的设置: LDAP Dynamic Setting
这是它发现的组: Discovered Groups
以上是错误的,因为这些是用户而不是组。 谢谢!
