From 96c44c60c8f6bf58ca58ef8ccc3d6691c130635e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Am=C3=A9lie=20Lilith=20Krej=C4=8D=C3=AD?= Date: Mon, 13 Jan 2025 22:39:06 +0100 Subject: [PATCH] website/docs: add note about lookups to AD docs --- .../sources/directory-sync/active-directory/index.md | 1 + 1 file changed, 1 insertion(+) diff --git a/website/docs/users-sources/sources/directory-sync/active-directory/index.md b/website/docs/users-sources/sources/directory-sync/active-directory/index.md index 3b688df624f3..2f7177ce1224 100644 --- a/website/docs/users-sources/sources/directory-sync/active-directory/index.md +++ b/website/docs/users-sources/sources/directory-sync/active-directory/index.md @@ -62,6 +62,7 @@ Additional settings that might need to be adjusted based on the setup of your do - User object filter: Which objects should be considered users. For Active Directory set it to `(&(objectClass=user)(!(objectClass=computer)))` to exclude Computer accounts. - Group object filter: Which objects should be considered groups. - Group membership field: Which user field saves the group membership +- Lookup using user attribute: Lookup group memberships from a user object attribute instead of a group attribute (`memberOf` instead of `member`). It can be useful for looking up nested group memberships, for which you'd want to use `memberOf:1.2.840.113556.1.4.1941:` as the group membership field, to tell Active Directory to follow DNs. - Object uniqueness field: A user field which contains a unique Identifier After you save the source, a synchronization will start in the background. When its done, you can see the summary under Dashboards -> System Tasks.