Up to Discussions in Openfire Support

This Question is Answered (go to answer)

2 "helpful" answers available (5 pts)
1,847 Views 4 Replies Last post: Jun 30, 2008 4:57 PM by John RSS
Mark Bronze
Mark
19 posts since
Jul 10, 2006
Currently Being Moderated

Apr 14, 2008 1:16 AM

Openfire LDAP question

 

Hi all,

 

 

a quick question re Openfire features: is it possible to point the Openfire server to multiple LDAP trees for user authentication? We have several AD servers within our organisation (normally, one per site/country). We'd like to run a single server at headoffice rather than one at each site.

 

 

cheers,

 

 

Mark

 

 

 

 

 

Tags: ldap
Todd Getz KeyContributor
Todd Getz
3,300 posts since
Apr 2, 2007
Currently Being Moderated
Apr 14, 2008 6:00 AM in response to: Mark
Re: Openfire LDAP question

So since you are using the term trees are we to assume that all your offices are members of the same Forrest or domain?  If so you should be able to use your Forrest as your baseDN and then use Filters to limit the users/groups.

John Bronze
John
38 posts since
Apr 8, 2008
Currently Being Moderated
Jun 30, 2008 2:07 PM in response to: Todd Getz
Re: Openfire LDAP question

 

Currently I configured openfire to use my user list from my LDAP server.

 

 

 

 

 

My base DN is:

 

 

cn=Users,dc=mydomain,dc=net

 

 

 

 

 

How would I use filters so that say only people with the last name "Smith" are given openfire accounts?

 

 

 

 

 

Thanks,

 

 

John

 

 

 

 

 

 

 

 

Todd Getz KeyContributor
Todd Getz
3,300 posts since
Apr 2, 2007
Currently Being Moderated
Jun 30, 2008 3:43 PM in response to: John
Re: Openfire LDAP question

this is a sample filter by group:

 



<searchFilter> <![CDATA[[(&(objectClass=organizationalPerson)(memberOf=cn=ChatISteam,ou=ChatGroups,ou=accounts,dc=domain,dc=com))]\]\]\></searchFilter>

 

You may be able to modify it to search by last name like this:

 



<searchFilter> <![CDATA[[(&(objectClass=organizationalPerson)(sn=Smith))]\]\]\></searchFilter>

 

John Bronze
John
38 posts since
Apr 8, 2008
Currently Being Moderated
Jun 30, 2008 4:57 PM in response to: Todd Getz
Re: Openfire LDAP question

Thanks!

More Like This

  • Retrieving data ...

Bookmarked By (0)