Hi all,
maybe someone has an idea how to solve my problem.
I’m trying to import users and groups from Active Directory using LDAP. Importing users works like a charm, importing groups doesn’t make any problems… but assigning users to the groups won’t work because rt-ldapimport is not able to get the members from the AD groups.
This may be due to the fact that we’re using nested groups in AD. To query this type of group one has to use something like
Set( $LDAPGroupMapping, {Name => ‘cn’,
Member_Attr => ‘memberOf:1.2.840.113556.1.4.1941:’,
Member_Attr_Value => ‘dn’});
This will resolve nested groups but returns the ldap user objects of all group members and not the group with just unpacked “member” Attributes (what’s - I assume - is what rt-ldapimport expects…)
Is there any way to solve this issue without just running rt-ldapimport to import users and groups and after that running some custom piece of code to update group memberships?
With kind regards
Benjamin