AnsweredAssumed Answered

Multivalue UID attribute

Question asked by mbirk on Jan 9, 2014
Hi everyone,

I have a problem syncing Alfresco with our Mac OS X 10.6 Open Directory as the user e-mail addresses are stored in the mutlivalued UID attribute. I tried different things:

1. Adding a string @company.com in the respective field in the custom-ldap-context.xml:


<property name="personAttributeMapping">
            <map>
                <entry key="cm:userName">
                    <!– Must match the same attribute as userIdAttributeName –>
                    <value>${ldap.synchronization.userIdAttributeName}</value>
                </entry>
                <entry key="cm:firstName">
                    <!– OpenLDAP: "givenName" –>
                    <!– Active Directory: "givenName" –>
                    <value>${ldap.synchronization.userFirstNameAttributeName}</value>
                </entry>
                <entry key="cm:lastName">
                    <!– OpenLDAP: "sn" –>
                    <!– Active Directory: "sn" –>
                    <value>${ldap.synchronization.userLastNameAttributeName}</value>
                </entry>
                <entry key="cm:email">
                    <!– OpenLDAP: "mail" –>
                    <!– Active Directory: "???" –>
                    <value>${ldap.synchronization.userIdAttributeName}@company.com</value>
                 </entry>
                <entry key="cm:organization">
                    <!– OpenLDAP: "o" –>
                    <!– Active Directory: "???" –>
                    <value>${ldap.synchronization.userOrganizationalIdAttributeName}</value>
                </entry>
                <!– This deprecated property has been replaced by "cm:organization". We will use the same mapping –>
                <entry key="cm:organizationId">
                    <!– OpenLDAP: "o" –>
                    <!– Active Directory: "???" –>
                    <value>${ldap.synchronization.userOrganizationalIdAttributeName}</value>
                </entry>
                <!– Always use the default –>
                <entry key="cm:homeFolderProvider">
                    <null/>
                </entry>
            </map>


Did not work.

2. Manipulated the ldap query in ldap-authentication.properties:


# The attribute on person objects in LDAP to map to the email property in Alfresco
ldap.synchronization.userEmailAttributeName=(uid\=*company.com)


This did not solve my problem either.

Is it possible to modify the query so the second value from Directory is mapped for the Alfresco user attribute? Or as an alternative: how can I modify the result of the query as one of our email addresses are uid@company.com

Thanks for any help.

Regards
Max

Outcomes