|Project:||Lightweight Directory Access Protocol (LDAP)|
Looking at the config for:
Part II. How are drupal role drupal roles derived from LDAP data?
Three options - and it looks like
II.C. DERIVE DRUPAL ROLES FROM ENTRY is the nearest.
Thing is - that is a DN (or several) where the user's CN is in a multivalue attribute.
However - we're using groupOfUniqueNames
Here the multivalue uniqueMember attribute holds the user's DN - not CN.
I've set the DN under
IIC > LDAP DNs containing roles (one per line)
and the attribute to
Lower down - in the LDAP to Drupal mapping I've added
site user role exists.
But - testing a username (mapped from UID) of a user that has it's dn in the uniqueMember list doesn't give a match.
(Note that testing authentication for that user on the previous config page worked OK).
Am I missing something obvious with the role mapping config or is a list of DN's not currently supported?