AnsweredAssumed Answered

LDAP : How to synchronise one branch with group and sub-groups and one branch with users?

Question asked by mnesson on Dec 3, 2018

Hi everyone, 

 

this is my environment:

alfresco : 5.2.3 

ldap : openldap 

the structure of my directory : 

-fr

---alfresco

--------groups

-----------group1

----------------group1-manager

-----------group2

----------------group2-manager

-----------group3

----------------group3-manager

--------people

-----------user1

-----------user2

-----------user3

 

user1 is member of : cn=people, dc=alfresco, dc=fr

                         and : cn= group1-manager, ou=groups, dc=alfresco,dc=fr

user2 is member of : cn=people, dc=alfresco, dc=fr

                         and : cn= group2, ou=groups, dc=alfresco,dc=fr

user3 is member of : cn=people, dc=alfresco, dc=fr

                         and : cn= group3-manager, ou=groups, dc=alfresco,dc=fr

....

 

I do two synchronisations :

-first to synchronise users and groups. 

with group search filter : ldap.synchronization.groupSearchBase=ou\=groups,dc\=alfresco,dc\=fr

and groupQuery : ldap.synchronization.groupQuery=(objectclass\=organizationalRole)

 

-second to synchronise users and manager's groups.

with group search filter : ldap.synchronization.groupSearchBase=ou\=groups,dc\=alfresco,dc\=fr

and groupQuery : lldap.synchronization.groupQuery=(objectclass\=groupOfUniqueNames)

 

my problem is the following : users and groups are synchronized for the first synchronization but only the groups are synchronized during the second synchronization. Users are not in groups. I tried complete or differential synchronization  and the result is identical.
Do you have an idea?

 

thank you in advance for your help

Regards, 

Outcomes