Hey everyone,
we have the task of moving our LDAP groups into another OU for a best practice setup. We use OpenSearch as our SIEM, and LDAP groups are our only authentication and authorization backend. Currently, we only have LDAP groups for each team, which manage log access. However, we don’t have groups for alerting or snapshot management.
I wanted to ask how the LDAP tree looks for others. Is anyone using nested groups for this? Additionally, what naming conventions do you use for the groups?
Thanks in advance