Repository: guacamole-manual Updated Branches: refs/heads/staging/1.0.0 08a08aac0 -> d7d23bf04
GUACAMOLE-220: Document configuration of LDAP for user groups. Project: http://git-wip-us.apache.org/repos/asf/guacamole-manual/repo Commit: http://git-wip-us.apache.org/repos/asf/guacamole-manual/commit/05bc901b Tree: http://git-wip-us.apache.org/repos/asf/guacamole-manual/tree/05bc901b Diff: http://git-wip-us.apache.org/repos/asf/guacamole-manual/diff/05bc901b Branch: refs/heads/staging/1.0.0 Commit: 05bc901b6b88c6bc47270edfe0783f715eb07bc3 Parents: cc2da2e Author: Michael Jumper <mjum...@apache.org> Authored: Sat Nov 3 15:03:43 2018 -0700 Committer: Michael Jumper <mjum...@apache.org> Committed: Sat Nov 3 15:03:43 2018 -0700 ---------------------------------------------------------------------- src/chapters/ldap-auth.xml | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/guacamole-manual/blob/05bc901b/src/chapters/ldap-auth.xml ---------------------------------------------------------------------- diff --git a/src/chapters/ldap-auth.xml b/src/chapters/ldap-auth.xml index 97dc84c..aa4291f 100644 --- a/src/chapters/ldap-auth.xml +++ b/src/chapters/ldap-auth.xml @@ -385,8 +385,9 @@ dn: cn={4}guacConfigGroup,cn=schema,cn=config <varlistentry> <term><property>ldap-group-base-dn</property></term> <listitem> - <para>The base of the DN for all groups that may be referenced within - Guacamole configurations using the standard <property>seeAlso</property> + <para>The base of the DN for all user groups that may be used by other + extensions to define permissions or that may referenced within Guacamole + configurations using the standard <property>seeAlso</property> attribute. All groups which will be used to control access to Guacamole configurations must be descendents of this base DN. <emphasis>If this property is omitted, the <property>seeAlso</property> attribute will @@ -394,6 +395,16 @@ dn: cn={4}guacConfigGroup,cn=schema,cn=config </listitem> </varlistentry> <varlistentry> + <term><property>ldap-group-name-attribute</property></term> + <listitem> + <para>The attribute or attributes which define the unique name of user + groups in the LDAP directory. Usually, and by default, this will simply + be "<property>cn</property>". If your LDAP directory contains groups + whose names are dictated by different attributes, multiple attributes + can be specified here, separated by commas.</para> + </listitem> + </varlistentry> + <varlistentry> <term><property>ldap-dereference-aliases</property></term> <listitem> <para>Controls whether or not the LDAP connection follows (dereferences) aliases
