Re: [OpenOlat] Map AD-Groups to OpenOlat Groups

Message has been deleted

Florian Gnägi

unread,

Mar 4, 2024, 7:21:53 AMMar 4

to open...@googlegroups.com

Hi

make sure you check out all the available LDAP configuration options, here ist the template for your configuration:

https://github.com/OpenOLAT/OpenOLAT/blob/master/src/main/resources/serviceconfig/olat.properties

Specially this section were you can map LDAP groups to OpenOlat groups or organisation structures, depending on your scenario.

Cheers

Florian

# sync group from a LDAP groups

ldap.ldapGroupBases=

ldap.ldapGroupBases.values=ou=groups,dc=openproject,dc=org

# the object class of groups

ldap.ldapGroupObjectClass=groupOfNames

ldap.ldapGroupFilter=(objectClass=${ldap.ldapGroupObjectClass})

# the marker attribute for coaches

ldap.coachRoleAttribute=employeeType

ldap.coachRoleValue=coach

# sync group from a list of separated ids saved in an attribute of

# the DLAP user

ldap.user.groupAttribute=

ldap.user.groupAttribute.values=o

ldap.user.groupAttributeSeparator=,

ldap.user.coachedGroupAttribute=

ldap.user.coachedGroupAttribute.values=o

ldap.user.coachedGroupAttributeSeparator=,

# sync group coaches as participant too

ldap.groupCoachAsParticipant=false

# sync organisations from LDAP groups

ldap.ldapOrganisationBases=

ldap.ldapOrganisationBases.values=ou=groups,dc=openproject,dc=org

ldap.ldapOrganisationObjectClass=groupOfNames

ldap.ldapOrganisationFilter=(objectClass=${ldap.ldapGroupObjectClass})

ldap.ldapOrganisationFilter.values=(&(objectClass=groupOfNames)(|(cn=org1)(cn=org2)(cn=org3)))

Am 04.03.2024 um 11:47 schrieb Eric Fischer <kiings...@gmail.com>:

Hello together,

we use OpenOlat with a connection to our Active Directory. Now we want to make training courses accessible only to certain departments. We have a separate AD group for each department. Is there any way of importing these AD groups into OpenOlat or creating them as groups?

--
--
Sie erhalten diese Nachricht, weil Sie Mitglied sind von Google
Groups-Gruppe "OpenOlat".
Für das Erstellen von Beiträgen in dieser Gruppe senden Sie eine E-Mail
an open...@googlegroups.com
Um sich von dieser Gruppe abzumelden, senden Sie eine E-Mail an
openolat+u...@googlegroups.com
Weitere Optionen finden Sie in dieser Gruppe unter
http://groups.google.com/group/openolat?hl=de
-------------------------------------------------------------------------------------------------------------------
OpenOlat - infinite learning - http://www.openolat.org
---
You received this message because you are subscribed to the Google Groups "OpenOlat" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openolat+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/openolat/587bd70b-3591-426b-b5b9-2211d18b5be3n%40googlegroups.com.

--------------------------------------------------------------------

professional services for the e-learning system OpenOlat

hosting - operating - support - development - mobile - consulting

--------------------------------------------------------------------

www.frentix.com | www.openolat.com

frentix GmbH

Florian Gnägi, Geschäftsführer

Okenstrasse 6

CH-8037 Zürich, Switzerland

tel://+41-43-544-9000

dir://+41-43-544-9001

Find me on mastodon linkedin

--------------------------------------------------------------------

Wir freuen uns auf einen Besuch auf der LEARNTEC! Kostenlose Tickets können HIER bestellt werden.

frentixgmb_Halle1-A28_LT_24_Banner-fuer-E-Mail_650x200.jpg

Message has been deleted

Florian Gnägi

unread,

Apr 2, 2024, 8:28:10 AMApr 2

to open...@googlegroups.com

Hi

You can not map a group G_Test1 to Test1, they will be the same. The group will be created in OpenOlat automatically, then you might be able to change the name within OpenOlat. For the syc process OpenOlat uses the so called external reference to identify the group in future syncs. You can not set this external reference manually for existing groups.

Cheers

Florian

Am 04.03.2024 um 16:39 schrieb Eric Fischer <kiings...@gmail.com>:

Thank you for your quick reply! Unfortunately, it is not clear how I can assign an AD group named "G_Test1" to a group or organization with the example name "Test1", for example. Where exactly can I enter the name of the group or organization from OpenOlat? I would also be fine if the respective group or organization is created automatically. The background is a demarcation of the individual departments either by groups or organizations.

Best Regards!

To view this discussion on the web visit https://groups.google.com/d/msgid/openolat/ae6774c9-aa24-4422-9e01-169336f0551an%40googlegroups.com.

Reply all

Reply to author

Forward