Configuring LDAP Information
Hi,
We are trying to configure LDAP for Jazz Team Server 3.0. Need to clarify what these accounts are : User Property Names Mapping : Does this refer to the SAMAccount ? Base Group DN ? what does this refer to ? Jazz to LDAP Group Mapping : Should we need a Seperate group for Jazz to created in LDAP server ? Regards Anoop |
6 answers
Hi,
User Property Names Mapping ===> userId=sAMAccountName,name=cn,emailAddress=displayname Base Group DN ===>cn=users,dc=companyname,dc=com (for companyname.com ) Jazz to LDAP Group Mapping====> JazzAdmins=JazzAdmins,JazzUsers=JazzUsers,JazzDWAdmins=JazzDWAdmins,JazzProjectAdmins=JazzProjectAdmins,JazzGuests=JazzGuests create these groups in your LDAP: JazzAdmins, JazzUsers, JazzDWAdmins, JazzProjectAdmins and JazzGuests I have done it and it works fine! regards, Jagdish Gujar Hi, |
Jagdish,
Could you elaborate on thsi a little more.How does creating the groups on LDAP server work with RTC. What I want to kno wis that when a user is created, it is upto the RTC admin to assign the group right?How will this assignment affect the LDAP groups. Thanks ~Henna |
Ralph Schoon (61.8k●3●36●43)
| answered May 09 '11, 11:30 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
Hi Henna,
when enabling LDAP the Repository Permissions JazzAdmins, JazzDWAdmins, JazzGuests, JazzUsers, JazzProjectAdmins are no longer specified by the RTC admin. These are mapped to groups in LDAP that a user needs to be assigned to in LDAP. The membership in the LDAP group then sets the Repository Permission automatically. Roles etc are still maintained in RTC by the project admin or other user with the required permissions. Thanks, Ralph Jagdish, |
|
So its the LDAP that is responsible for maintaining the permissions not RTC.This can be a cumbersome process, especially in orgs that have a lengthy process and security in place. Trying to create groups on LDAP server is going to take a lot of paper work and its not an easy task.Is there a way that we can use LDAP without having to create these groups on the LDAP server?
Thanks ~Henna Hi Henna, Jagdish, |
|
Ralph Schoon (61.8k●3●36●43)
| answered May 10 '11, 2:17 p.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
Hi Henna,
I ran into the library article once and looked it up using "LDAP" as search term. This one http://jazz.net/library/article/457 that might provide an option but it seems to be for 2.x. I am not sure it has been included into later releases. Maybe worth a try. Maybe this article provides something for WAS, I am not familiar with it http://jazz.net/library/article/604. Thanks, Ralph So its the LDAP that is responsible for maintaining the permissions not RTC.This can be a cumbersome process, especially in orgs that have a lengthy process and security in place. Trying to create groups on LDAP server is going to take a lot of paper work and its not an easy task.Is there a way that we can use LDAP without having to create these groups on the LDAP server? |
|
|