![]() ![]() ![]() To narrow down the number of used groups, you can extend the filter with the group name restrictions. For example, for Active Directory the default filter is: The filter should contain information about which object class the group entries have. You can type an LDAP Filter string to narrow down the number of returned groups. To only assign users to groups of the OU=Lab,DC=dynatrace,DC=org subtree, specify this subtree as the Base DN. If you want to assign users to groups in both subtrees, you should specify the Base DN for the groups query as DC=dynatrace,DC=org (the parent entry). In the example image below, there are two subtrees containing user groups OU=Groups,DC=dynatrace,DC=org and OU=Lab,DC=dynatrace,DC=org: Base DN for the groups query is the entry that contains the subtree in which your groups exist. The LDAP directory is organized in a tree structure.Type query strings into the appropriate fields to return the groups you want to integrate with Dynatrace. If you want to use LDAP integration for authentication only (to manage groups and assign permissions in Dynatrace Managed), clear the Assign users to groups automatically based on LDAP query check box and proceed to Users query configuration. Users are created automatically, but only after a successful authentication attempt.įollowing a successful connection test, the Groups query step becomes active.Groups needs to be created manually by the admin.When the connection is successful, you're ready to configure groups and users. Based on the previous step, Dynatrace provides you with the default settings for group and user queries.Dynatrace attempts to recognize the type of LDAP server you're using.Select Test connection to see if Dynatrace Managed is able to reach your LDAP server. ![]() Optional If you've configured referrals on your LDAP server, set Maximum referral hops. From the LDAP server perspective, it's just a user that reads data and therefore does not need write access, but it needs read access to all the data that will be retrieved from LDAP by the Dynatrace server.Įnter the Password used by the LDAP user specified in the Bind DN. Note: Bind DN typically is a system user (not an actual person) used to connect to the LDAP server. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |