and more in a single search tool across platforms. Read the announcement here. |
12/12/2023 09:26 AM
Hello All,
We were able to import users and groups from an OpenLDAP. Unfortunately we are not able to map accounts (members) to groups. The schema does not contain an attribute for user objects to show their membership.
Groups objects shows their members under two different attributes - "memberuid" or "nisnetgrouptriple".
Examples of querying groups :
# System Administrator group
dn: cn=sysadmin,ou=XX,dc=XX,dc=XX,dc=XX
cn: sysadmin
description: System Administrators
gidnumber: 2135
memberuid: user1
memberuid: user2
memberuid: user3
objectclass: posixGroup
objectclass: top
objectclass: namedObject
or
# System Administrator netgroup
dn: cn=admin,ou=XX,dc=XX,dc=XX,dc=XX
cn: admin
description: System Administrators
nisnetgrouptriple: (,user1,)
nisnetgrouptriple: (,user2,)
nisnetgrouptriple: (,user3,)
objectclass: nisNetgroup
objectclass: top
Is there a way to map accounts to groups they are member of in Saviynt ?
12/15/2023 01:44 AM
Hi @janB,
We are checking on your request and we will keep you posted.
12/15/2023 05:14 AM
Hi @janB,
To facilitate a more in-depth understanding, we kindly request you to provide additional information related to your requirements. The following forum posts seem to touch upon aspects relevant to your needs:
https://forums.saviynt.com/t5/identity-governance/ldap-group-import-mapping/td-p/38214
https://forums.saviynt.com/t5/identity-governance/ldap-account-group-import-mapping-issue/td-p/56166
Please take a moment to review the aforementioned forum posts as they may contain valuable insights and discussions related to your inquiry. Furthermore, providing more context on your specific usecase will enable us to offer more targeted and tailored assistance.