Uploaded image for project: 'Traffic Control'
  1. Traffic Control
  2. TC-331

LDAP search filter contains Active Directory specific attributes

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Traffic Ops

      Description

      Moved from https://github.com/Comcast/traffic_control/issues/1129

      The search filter used to locate user DNs contains hard coded values that only work with Active Directory:

      $mesg = $ldap->search( base => $search_base, filter => "(&(objectCategory=person)(objectClass=user)(sAMAccountName=$username))" );

      This search filter should be configurable and should be in ldap.conf. Instead, it's hard coded in TrafficOps.pm.

      For example, this search filter would work with most non-AD based LDAP severs:

      (&(objectClass=inetOrgPerson)(uid=$username))

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              elsloo Jeff Elsloo
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: