openldap for Users in Specific LDAP Group Only
Hi! I can login with ANY ldap user to teamcity, but i want to login if user a member of group "teamcity" (cn=teamcity) in OU=Groups
java.naming.provider.url=ldap://XXX:389/DC=YYY,DC=local
java.naming.security.principal=CN=admin,DC=YYY,DC=local
teamcity.users.base=OU=Users
teamcity.groups.base=OU=Groups
If I create filter this filter, then all works, but i can login ANY user - I don't need that
teamcity.users.login.filter=(uid=$capturedLogin$)
When I create filter it don't work
teamcity.users.login.filter=(&(objectClass=posixGroup)(cn=teamcity)(memberUid=$capturedLogin$))
I do not have parameter in user "memberof", i have parameter in group - memberUid
help me a write search filter please
Please sign in to leave a comment.
Hi,
we have a specific example on that but for Windows AD instead: https://confluence.jetbrains.com/display/TCD18/Typical+LDAP+Configurations#TypicalLDAPConfigurations-BasicLDAPLoginforUsersinSpecificLDAPGroupOnly
As far as I am aware, memberOf is a property (whether it belongs to a group or not) that is added automatically by the ldap server, so it should still be available for use. Could you please try the Windows line (modifying CNs and DNs as required?)