Le 26/12/2011 05:21, Geo PC a écrit :
We have CAS Server in which it uses cas-server-webapp-3.4.10.war for Single 
Sign On and this CAS Server is integrated with a LDAP Server.

We have a Drupal site and it uses a CAS module (http://drupal.org/project/cas) 
and with this, CAS users are able to login to Drupal sites as SSO. But we are 
unable to map groups (Attributes of LDAP) as Drupal roles . So by searching 
Google we came to know that by mapping LDAP attributes to CAS we can map roles.

So can you please help me on this in which we need to map or import LDAP 
attributes to CAS so that while login Drupal sites with CAS users it 
automatically maps LDAP groups (attributes) as Drupal roles.

Attached my deployerConfigContext.xml and we are using linux ubuntu servers for 
LDAP and CAS.

Thanks
GeoP.C.
Our future web site will use Drupal and I was told that Drupal roles cannot be directly mapped to LDAP groups due to LDAP formalism : Groups that are returned by CAS (in our case, it's memberOf AD Attribute) are LDAP DNs like "CN=my group, OU=People, DC=example, DC=com" when Drupal is expecting something more like "my group" only.

Unfortunately, CAS is not yet able to do the conversion (see https://issues.jasig.org/browse/CAS-1078 ), so I think you'll have to do some modification at Drupal level or use another multi-valued LDAP attribute.

Rgds

--
Philippe MARASSE

Service Informatique - Centre Hospitalier Henri Laborit
BP 587 - 370 avenue Jacques Coeur
86021 Poitiers Cedex
Tel : 05.49.44.57.19


Attachment: smime.p7s
Description: Signature cryptographique S/MIME

Reply via email to