LDAP OU Definition

sgmartin
Kilo Guru

‎05-03-2018 01:29 PM

Going to start using LDAP to maintain and update our user base.  We have been using Okta up to now and will swicth to use LDAP instead.  Now, I have setup the LDAP Server and can successfully browse AD.  Since or AD is so large and not everyone will use SN, we have a group in AD that a user has to be a member of in order to get an account provisioned in SN.  The user accounts themselves are spread all over. None of the accounts are under the CN of User.  We have a filter setup for the Users LDAP OU Definition to make sure they are a member of that group.

RDN:  CN=Users

Filter:  (&(objectClass=person)(memberof=CN=ET-GG-SAAS_ServiceNow,OU=Groups,OU=Groups,DC=,DC=my-domain,DC=COM))

First question, is my RDN correct?

Second question, we would like to further filter out accounts if someone added an admin account to this group.  Is that a separate OU Definition?  Do I create separate OU Definitions for each CN?

0 Helpfuls
  • 1,244 Views
1 REPLY 1

Mike Patel
Tera Sage

‎05-03-2018 02:05 PM

RDN is usually like OU=Users

0 Helpfuls