• Sign In
  1. Messages

LDAP: Import Groups from Open Directory server?

Installation Forum (Inactive)

View Message

view list print
LDAP: Import Groups from Open Directory server? Ben Bimber  2009-09-08 08:44
Status: Closed
 
we have an apple open directory server setup to manage user permissions and groups. our labkey server is already set up to authenticate against it. however, we have a fairly complex set of user groups we need to replicate in labkey. it is possible to either import or sync the groups between open directory and labkey? even a one-time unidirectional import into labkey would be very helpful in getting this project started.

mark - this is a fairly high priority item as it will allow us to start letting the different units maintain private pages. if absolutely essential we can manually re-create the groups in labkey, but i'd really prefer to avoid this.

thanks.
 
 
marki responded:  2009-09-08 09:25
If these groups were ONLY changed on the LDAP server, then it seems like it would be somewhat straightforward to build one of these. It should be possible to use our API to import LDIF data into labkey groups.

Have you attempted to export group information from your openldap server? I think you would use slapcat to do this, but I am new to OpenLDAP (will ask the rest of the team for more info). If you can do that (and perhaps give us a sample in a non-public forum) I think it might make sense for us to post a program that takes that output and uses our group API to load/update matching groups in the LabKey server.
 
Ben Bimber responded:  2009-09-08 10:06
Mark - will talk to Tom and send you an email. having one-way sync (only changing users or groups in the LDAP server) is fine.

is there a more appropriate non-public place to communicate requests like this on our project?