shaskell wrote: > I've configured mine to include these settings: > > LDAPUserFolder at /zport/acl_users/ActiveDirectory/acl_users > > Configure Tab: > Login Name Attribute: Windows Login Name (sAMAccountName) > User ID Attribute: Windows Login Name (sAMAccountName) > RDN Attribute: Windows Login Name (sAMAccountName) > > *Note that you won't be able to set the User ID Attribute or RDN Attribute to > sAMAccountName until after you've successfully created it. You'll have to go > back to the configure tab and switch them over. > > Default User Roles: ZenUser > Check Manager DN to Read-only (so you don't write anything to your AD) > > .... > > Groups Tab > If you've configured Groups to be managed through AD, create the appropriate > group mapping here. > > LDAP Group (sysadmins or whatever group you use) and map the zope role to > whatever Zope Role you want them to have. > >
But the LDAP group mapping still not work in this setting. Because Default User Roles is set to ZenUser. Thus anybody in LDAP user would be treat as ZenUser, no matter this user is belong to which LDAP group. Does any body know how to make LDAP group mapping work? -------------------- m2f -------------------- Read this topic online here: http://forums.zenoss.com/viewtopic.php?p=29874#29874 -------------------- m2f -------------------- _______________________________________________ zenoss-users mailing list [email protected] http://lists.zenoss.org/mailman/listinfo/zenoss-users
