Up to Discussions in Openfire Support

This Question is Answered

2 "helpful" answers available (5 pts)
4 Replies Last post: Jun 30, 2008 6:57 PM by John  
Mark Bronze
Mark
17 posts since
Jul 11, 2006
Currently Being Moderated

Apr 14, 2008 3:16 AM

Openfire LDAP question

 

Hi all,

 

 

a quick question re Openfire features: is it possible to point the Openfire server to multiple LDAP trees for user authentication? We have several AD servers within our organisation (normally, one per site/country). We'd like to run a single server at headoffice rather than one at each site.

 

 

cheers,

 

 

Mark

 

 

 

 

Tags: ldap
Todd Getz KeyContributor
Todd Getz
2,568 posts since
Apr 2, 2007
Currently Being Moderated
Apr 14, 2008 8:00 AM in response to: Mark
Re: Openfire LDAP question

So since you are using the term trees are we to assume that all your offices are members of the same Forrest or domain?  If so you should be able to use your Forrest as your baseDN and then use Filters to limit the users/groups.

Report Abuse
John Bronze
John
36 posts since
Apr 8, 2008
Currently Being Moderated
Jun 30, 2008 4:07 PM in response to: Todd Getz
Re: Openfire LDAP question

 

Currently I configured openfire to use my user list from my LDAP server.

 

 

 

 

My base DN is:

 

 

cn=Users,dc=mydomain,dc=net

 

 

 

 

How would I use filters so that say only people with the last name "Smith" are given openfire accounts?

 

 

 

 

Thanks,

 

 

John

 

 

 

 

 

 

Report Abuse
Todd Getz KeyContributor
Todd Getz
2,568 posts since
Apr 2, 2007
Currently Being Moderated
Jun 30, 2008 5:43 PM in response to: John
Re: Openfire LDAP question

this is a sample filter by group:

 



<searchFilter> <![CDATA[[(&(objectClass=organizationalPerson)(memberOf=cn=ChatISteam,ou=ChatGr oups,ou=accounts,dc=domain,dc=com))]\]\]\></searchFilter>

 

You may be able to modify it to search by last name like this:

 



<searchFilter> <![CDATA[[(&(objectClass=organizationalPerson)(sn=Smith))]\]\]\></searchFilter>

 

Report Abuse
John Bronze
John
36 posts since
Apr 8, 2008
Currently Being Moderated
Jun 30, 2008 6:57 PM in response to: Todd Getz
Re: Openfire LDAP question

Thanks!

Report Abuse

More Like This

  • Retrieving data ...