LDAP attribute name for email addresses should be configurable

[Binford3000]

Expected Behavior

The email addresses in our LDAP are not stored in the standard field "mail". So my users will have not the correct addresses in their profiles. It would be great to set the name of the mail attribute in the LDAP config like it is working for the display name.

Current Behavior

Mail addresses must be in the "mail" attribute.

Possible Solution

Make the attribute name a configurable parameter.

Your Environment

• Graylog Version: 2.1
• Elasticsearch Version: 2.4
• MongoDB Version: 2.0.6
• Operating System: Debian 8

[Binford3000]

Any ideas how to use Graylog email alerts if the email attribute is called "finalMailAddress" instead of "mail"? Is it possible to change this manually in the code?

[joschi]

@Binford3000 You could change it in LdapEntry#getEmail() if you really want to:

graylog2-server/graylog2-server/src/main/java/org/graylog2/shared/security/ldap/LdapEntry.java

Lines 72 to 78 in 9f2c6ef

	public String getEmail() {
	String email = get("mail");
	if (email == null) {
	email = get("rfc822Mailbox");
	}
	return email;
	}

[Binford3000]

@joschi Ok, thank you for your help! But I have no idea where to change it. I am not a developer. Thought it would be somewhere in a plain text file. I think I cannot change this in my running installations, right?

[joschi]

I think I cannot change this in my running installations, right?

Correct, you would have to build Graylog yourself for this change.

[Binford3000]

Any news on this topic? We still cannot use email notification because all users have @localhost as email domain. Current Version 2.4.5.

[NOC-HSLU]

In 2.4.6 the behavior is still the same. If you want to send email alerts you must select local accounts as 'user receivers' or set some hard-coded 'e-mail receivers' in the alert configuration.
We were forced to add all power users as local accounts and use LDAP only for guest accounts. :-(

[HenryTheSir]

Any news on this?