Hi,

I was wondering if it was at all possible to add some sort of search filter or ability to authenticate in to a security group instead of OU.

Our AD instance has thousands of users across various OUs that are divided up by physical location, and moving the users we want authenticated into a single OU would be near impossible, instead of adding it by CN. Something like CN=Teachers,OU=district,OU=local instead of OU=Teachers,etc..

The other option would be to add a filter like snipeit does, which seems to be a normal LDAP query:

I apologize if this is nonsensical or rude, as I am a dumb tech and not well versed in scripting or coding languages. Thanks for the help.

  • KevinTheJedi replied to this.

  • shuff

    I see, well we will take this as feedback for v2.0.

    For now you will need to modify the plugin. You can either hardcode the filter (shown in the link above) or you can make it configurable.

    Cheers.

      KevinTheJedi

      Hi,

      I've tried "CN=Teachers,DC=district,DC=local", "DC=district,DC=local,&(objectCategory=user)(memberOf=CN=Teachers,DC=district,DC=local)", and "&(objectCategory=user)(memberOf=CN=Teachers,DC=district,DC=local)" to no avail.

      I also verified that if I do "DC=district,DC=local" I can authenticate with my AD instance.

      Thanks for the response!

          shuff

          I see, well we will take this as feedback for v2.0.

          For now you will need to modify the plugin. You can either hardcode the filter (shown in the link above) or you can make it configurable.

          Cheers.

            Write a Reply...