Configuring LDAP Information
Hi,
We are trying to configure LDAP for Jazz Team Server 3.0.
Need to clarify what these accounts are :
User Property Names Mapping : Does this refer to the SAMAccount ?
Base Group DN ? what does this refer to ?
Jazz to LDAP Group Mapping : Should we need a Seperate group for Jazz to created in LDAP server ?
Regards
Anoop
We are trying to configure LDAP for Jazz Team Server 3.0.
Need to clarify what these accounts are :
User Property Names Mapping : Does this refer to the SAMAccount ?
Base Group DN ? what does this refer to ?
Jazz to LDAP Group Mapping : Should we need a Seperate group for Jazz to created in LDAP server ?
Regards
Anoop
6 answers
Hi,
User Property Names Mapping ===> userId=sAMAccountName,name=cn,emailAddress=displayname
Base Group DN ===>cn=users,dc=companyname,dc=com
(for companyname.com )
Jazz to LDAP Group Mapping====> JazzAdmins=JazzAdmins,JazzUsers=JazzUsers,JazzDWAdmins=JazzDWAdmins,JazzProjectAdmins=JazzProjectAdmins,JazzGuests=JazzGuests
create these groups in your LDAP: JazzAdmins, JazzUsers, JazzDWAdmins, JazzProjectAdmins and JazzGuests
I have done it and it works fine!
regards,
Jagdish Gujar
User Property Names Mapping ===> userId=sAMAccountName,name=cn,emailAddress=displayname
Base Group DN ===>cn=users,dc=companyname,dc=com
(for companyname.com )
Jazz to LDAP Group Mapping====> JazzAdmins=JazzAdmins,JazzUsers=JazzUsers,JazzDWAdmins=JazzDWAdmins,JazzProjectAdmins=JazzProjectAdmins,JazzGuests=JazzGuests
create these groups in your LDAP: JazzAdmins, JazzUsers, JazzDWAdmins, JazzProjectAdmins and JazzGuests
I have done it and it works fine!
regards,
Jagdish Gujar
Hi,
We are trying to configure LDAP for Jazz Team Server 3.0.
Need to clarify what these accounts are :
User Property Names Mapping : Does this refer to the SAMAccount ?
Base Group DN ? what does this refer to ?
Jazz to LDAP Group Mapping : Should we need a Seperate group for Jazz to created in LDAP server ?
Regards
Anoop
Hi Henna,
when enabling LDAP the Repository Permissions JazzAdmins, JazzDWAdmins, JazzGuests, JazzUsers, JazzProjectAdmins are no longer specified by the RTC admin. These are mapped to groups in LDAP that a user needs to be assigned to in LDAP. The membership in the LDAP group then sets the Repository Permission automatically.
Roles etc are still maintained in RTC by the project admin or other user with the required permissions.
Thanks,
Ralph
when enabling LDAP the Repository Permissions JazzAdmins, JazzDWAdmins, JazzGuests, JazzUsers, JazzProjectAdmins are no longer specified by the RTC admin. These are mapped to groups in LDAP that a user needs to be assigned to in LDAP. The membership in the LDAP group then sets the Repository Permission automatically.
Roles etc are still maintained in RTC by the project admin or other user with the required permissions.
Thanks,
Ralph
Jagdish,
Could you elaborate on thsi a little more.How does creating the groups on LDAP server work with RTC. What I want to kno wis that when a user is created, it is upto the RTC admin to assign the group right?How will this assignment affect the LDAP groups.
Thanks
~Henna
So its the LDAP that is responsible for maintaining the permissions not RTC.This can be a cumbersome process, especially in orgs that have a lengthy process and security in place. Trying to create groups on LDAP server is going to take a lot of paper work and its not an easy task.Is there a way that we can use LDAP without having to create these groups on the LDAP server?
Thanks
~Henna
Thanks
~Henna
Hi Henna,
when enabling LDAP the Repository Permissions JazzAdmins, JazzDWAdmins, JazzGuests, JazzUsers, JazzProjectAdmins are no longer specified by the RTC admin. These are mapped to groups in LDAP that a user needs to be assigned to in LDAP. The membership in the LDAP group then sets the Repository Permission automatically.
Roles etc are still maintained in RTC by the project admin or other user with the required permissions.
Thanks,
Ralph
Jagdish,
Could you elaborate on thsi a little more.How does creating the groups on LDAP server work with RTC. What I want to kno wis that when a user is created, it is upto the RTC admin to assign the group right?How will this assignment affect the LDAP groups.
Thanks
~Henna
Hi Henna,
I ran into the library article once and looked it up using "LDAP" as search term. This one http://jazz.net/library/article/457 that might provide an option but it seems to be for 2.x. I am not sure it has been included into later releases. Maybe worth a try.
Maybe this article provides something for WAS, I am not familiar with it http://jazz.net/library/article/604.
Thanks,
Ralph
I ran into the library article once and looked it up using "LDAP" as search term. This one http://jazz.net/library/article/457 that might provide an option but it seems to be for 2.x. I am not sure it has been included into later releases. Maybe worth a try.
Maybe this article provides something for WAS, I am not familiar with it http://jazz.net/library/article/604.
Thanks,
Ralph
So its the LDAP that is responsible for maintaining the permissions not RTC.This can be a cumbersome process, especially in orgs that have a lengthy process and security in place. Trying to create groups on LDAP server is going to take a lot of paper work and its not an easy task.Is there a way that we can use LDAP without having to create these groups on the LDAP server?
Thanks
~Henna