LDAP Resolver with email tokens doesnt use ldap "mail" attribute
37 views
Skip to first unread message
jmdeking
unread,
Jun 6, 2016, 10:02:53 AM6/6/16
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to privacyidea
Hi There,
I made an ldap resolver so everyone can log in to the server and assign a email token. Only problem for is that the email from ldap is not automatically filled in.
Is there any way to make this happen?
Kind Regards,
Johan
Cornelius Kölbel
unread,
Jun 6, 2016, 10:05:03 AM6/6/16
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to privacyidea
I want the user to choose its own authentication methode either by sms or by email.
But when logging in as an ad user my email adres extracted from the "mail" attribute in ldap is not automatically filled in the "email adress" field in privacy idea when enrolling the token.
For ease of use i want this to be already filled in and i want to lock it down.
Op maandag 6 juni 2016 16:10:09 UTC+2 schreef Cornelius Kölbel:
Cornelius Kölbel
unread,
Jun 6, 2016, 11:11:29 AM6/6/16
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to priva...@googlegroups.com
Hi Johan,
this is not configurable.
We could add an extra policy or setting for this token type to do so.
This would be the same for SMS.
If it is important to you, please state a feature request on github
https://github.com/privacyidea/privacyidea/issues
Or: You can enroll an email token AND an SMS token to each user right
away!