Folks,
We're using CAS with X509 + LDAP Authentication against AD 2008R2.
Attribute releasing through SAML is working fine, but I was wondering if
it exists an easy way to modify some attributes I'm getting from LDAP.
Actually I retrieve group membership (memberOf LDAP attribute) but it's
complete DNs so it's not very application friendly. For example, I get
my group attribute from CAS as this list :
- CN=Group 1, OU=Groups, DC=example, DC=com
- CN=Group 2, OU=Groups, DC=example, DC=com
- CN=Group 3, OU=Groups, DC=example, DC=com
I'd like to know if there's a way to transform group attribute to this
list :
- Group 1
- Group 2
- Group 3
Rgds.
Philippe.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
