[solved/Github]LDAP - Role Assignment over Groups

Premyslaw · April 18, 2019, 5:51am

Used Zammad version: 2.9

Used Zammad installation source: apt package
Operating system: Ubuntu 18.04 LTS
Browser + version: Chrome

Hello,

iam using the LDAP Sync to assign Groups from our Active Directory to Roles. This works fine but now all our Departments should work with Zammad and now i got a lot of more AD Groups with a lot of more Users.

I created in our AD for Zammad Agent Groups and now i assigned our Department AD Groups to the Zammad Groups. So that a Group is Member of the Zammad Group.

But now the users won’t be assigned. Only if i assign Users directly to the Zammad Group the sync works.

Is it possible to assign a group to a group and the sync will work?

dvnkln · April 18, 2019, 6:06am

Hey @Premyslaw,

they probably need to “fix” the ldap integration for this.

Most basic ldap integrations use the syntax to look for direct memberships per default.
But there are multiple ways for nested groups to work via ldap.

I guess this should be a FR instead of technical assistance (since you’re basically doing nothing wrong on a technical level).

Totally IMHO btw - could be wrong.

cheers

Premyslaw · April 18, 2019, 6:14am

Ok thank you very much for this Information!

Maybe a Mod can move this Topic to the FR Section

MrGeneration · April 24, 2019, 5:17pm

We currently don’t support nested groups and have a enhancement request on this:

Premyslaw · April 25, 2019, 4:26am

Thank you for the information I will follow the progress on github!

system · August 23, 2019, 4:28am

This topic was automatically closed 120 days after the last reply. New replies are no longer allowed.