2 answers
- 10-1
Hi Owen Ong
Thanks for looking into it - much appreciated.
Can you tell me what example config you used for the admin role mapping? I used a filter that pulls out additional users. But as you said it’s the same method so I don’t know why the result is different. My users have both admin and user role when I sync through the UI - should it only be one or the other?
- Eric
I also tried it with admin role mapping based on a group - same result.
Add your comment... - 10-1
Hi Eric,
I tested the script. It does sync the user role in my test. The script is actually called the same method used by the manual sync.
I do check the Kerberos SSO plugin as well. It just an extended class of SecureDirectoryManagerImpl which will not affect anything to the SyncLdapUserDirectoryManagerImpl.
Best regards.
Add your comment...
Hi team,
Per my previous post, the v6 scheduler plugin doesn't work on my v6 instance.
However, I created a process that runs every x minutes (deadline based) to execute the beanshell script documented in the KB:
Automatically synchronize LDAP based on schedule
I use Kerberos SSO and the external Sync LDAP Directory Manager. The manual sync works fine and picks up the admin role mapping. However, when the beanshell script is executed it picks up the users but it doesn't apply the admin role.
Any thoughts on how this can be fixed?
Cheers