Role template - LDAP results

sthomps · September 28, 2019, 2:00am

I currently have authc=SAML and authz=LDAP. The LDAP filter example is the following.

LDAP
Search Base: ou=groups,dc=com
Search Filter: (member=cn=sthomps,ou=users,dc=com)

LDAP Results
cn=1,dc=com
cn=2,dc=com

When a user logs in, they should only be able to view indexes: 1 & 2 - not 3.

I can accomplish this using the following setup explained here. Does opendistro support this use case?

pablo · May 24, 2021, 11:53am

Hello @sthomps

Have you tried to resolve this issue with the newest version of ODFE? What is your current version?

sthomps · May 24, 2021, 4:38pm

Hi @pablo,

Yes I was able to resolve my usecase.

I populated the role and role mappings for the indexes on initial setup. User logs in, LDAP results are returned and they only see the indexes based on those mappings.

Thanks

Topic		Replies	Views
LDAP auth query with Filters Security troubleshoot , configure	2	349	August 17, 2023
LDAP User advanced search query Security	1	333	January 4, 2022
Mapping AD groups, contains other groups, to roles OpenSearch configure	0	419	February 25, 2023
Unmapped groups as role Security	4	820	March 16, 2021
Ldap users assigned to roles and index security error Security	3	460	January 15, 2021

Role template - LDAP results

Related topics