LDAP and groups

[.Mark]

Is it possible to either link the SCM group to an ldap group or in the
repository permissions specify the ldap group there?

[Jerome Smith]

I don't see why not. You will not be able to query what users are in the group from scm-manager

[.Mark]

The next hurdle is knowing what to enter into the permissions field
for an ldap group to work. I will not see it as a problem if scm-
manager cannot display the users in the group. I would only care that
I can limit a repository to an ldap group.

On Sep 28, 12:32 pm, Jerome Smith <jerom...@gmail.com> wrote:
> I don't see why not. You will not be able to query what users are in the
> group from scm-manager

[Sebastian Sdorra]

You only have to add the name of the ldap group and check the group
checkbox in permission panel. You could see the groups of an user
during the login on the logfile.

2011/9/28 .Mark <ward...@gmail.com>:

[Mark Ward]

It was so easy getting this working I didn't know how to get it working!

What I had not fully understood yet was the settings for the LDAP Authentication group settings.  It was not clear at the time that this was to allow groups to be authenticated.  Now that I have my group settings properly setup.  I can enter the group into the repository's permissions and like magic the repositories show up for the users in the LDAP group specified.

For LDAP authentication against Active Directory I have the following set

Group Attribute Name: member

Group Search Filter: (&(objectClass=group)(member={0}))

Groups Unit: OU=Groups,OU=XXX Corporate

For the permissions in each repository all that I enter now is the CN of the group.  Say "XXX Developers" and it works.

Thank you for your help on this.