I have setup an user directory to synchronize with our Active Directory like this:
Base DN: dc=domain,dc=name
Additional User DN: ou=Employees
Additional Group DN: ou=Groups,ou=are,ou=here
Furthermore I have used "User Object Filter" and "User Object Filter" to only add users and groups that are member of a certain group in AD.
Now we also want to include some users found under ou=consultants,dc=domain,dc=name, but because our AD has a huge number of users with thousands of users (mostly school pupils) we don't want to just remove ou=Employees from "Additional User DN" and sync the entire tree. Can you use LDAP filter-syntax in "Additional User DN" or do you have any other way to specify more than one path?
If not, are there any other good ways of accomplishing what we want without modifying our ad structure or syncing the entire tree?
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot