Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Hazelcast Mancenter] LDAP group search with scope 'subtree' #14118

Closed
vcariven opened this issue Nov 14, 2018 · 3 comments

Comments

@vcariven
Copy link

commented Nov 14, 2018

Hazelcast Management Center LDAP authenticator does not make a LDAP subtreesearch for groups.

As group search is mandatory for role mapping, having an existing deep group hierarchy prevents from using ldap authenticator with mapping with existing groups.

LDAP group search scope could be configurable from ldap.properties file, e.g. by adding a property flag in ldap.properties :

# default value : false
groupSearchSubtree=true

Regards

@burakcelebi

This comment has been minimized.

Copy link
Member

commented Feb 5, 2019

@vcariven Thanks for your request! @jgardiner68 could provide more information about this.

@jgardiner68

This comment has been minimized.

Copy link

commented Feb 5, 2019

Hello @vcariven We are adding support for nested LDAP groups in the next release of Management Centre.
I have added this ticket to our internal tracking so we will give you an update when it is ready.

@emre-aydin emre-aydin self-assigned this Feb 11, 2019

@emre-aydin emre-aydin added this to the 3.12 milestone Feb 11, 2019

@emre-aydin

This comment has been minimized.

Copy link
Contributor

commented Mar 15, 2019

Management Center will do a search with subtree scope by default, starting with version 3.12.

@emre-aydin emre-aydin closed this Mar 15, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.