0 Replies Latest reply on Jul 25, 2013 8:10 AM by hettyere

    How to Synchronize LDAP groups in CRX

    hettyere

      Hello,

       

      Help needed urgently.

       

      I am trying to authenticate Active directory group using LDAP authentication. The aim of this is to be able to authenticate this group using LDAP and synchronize this group in CRX so that users can be added to it.

       

      I added these line of code to my ldap_login.conf  file:

       

      authDn="CN=Ad_grp_Acct,OU=groups,OU=company,DC=ca,DC=com"; autocreate="createGroup"

       

      The full ldap_login.conf is as below:

       

      com.day.crx {
         com.day.crx.core.CRXLoginModule sufficient;
         com.day.crx.security.ldap.LDAPLoginModule required
                    principal_provider.class="com.day.crx.security.ldap.principals.LDAPPr incipalProvider"
                    host="test.ca.com"
                    port="389"

           authDn="CN=Ad_grp_Acct,OU=groups,OU=etisa,DC=ca,DC=com

           authDn="CN=app_testsrv,OU=Service Accounts,OU=users,OU=etisa,DC=ca,DC=com"
           authPw="***"
                    secure="false"
           userIdAttribute="sAMAccountName"
                    userRoot="OU=Service Accounts,OU=users,OU=etisa,DC=ca,DC=com"
                    groupRoot="OU=groups,OU=etisa,DC=ca,DC=com"
                    groupMembershipAttribute="member"

                    autocreate="createGroup"
                    autocreate="createUser"
                    autocreate.user.mail="profile/email"
                    autocreate.user.givenname="profile/givenName"
                    autocreate.user.sn="profile/familyName"
                    autocreate.group.description="profile/aboutMe"
                    autocreate.group.mail="profile/email"
                    autocreate.group.cn="profile/givenName"
                    autocreate.path="direct"
                    cache.expiration="600"
                    cache.maxsize="100";
      };

       

      After i restarted the instance, there was no error but my LDAP group was not visible in CRX.

       

      Can you please look into this and let me know how I can synchronize LDAP group with CQ.

       

      Thank you.