[Check_mk (english)] LDAP multiple User and Group Base DN in WATO

I’ve successfully added users from one base, but I need multiple, since they are not all nested under just one user base dn.

Same problem with the group dn, I need to add more than one.

How is that achieved in the wato ldap configuration?

User Base DN

OU=Information Techs,OU=DeptONE,DC=my,DC=domain,DC=company,DC=com

OU=sys,OU=Users,OU=DeptTWO,DC=my,DC=domain,DC=company,DC=com

Group Base DN

OU=Distribution Groups,OU=DeptONE,DC=my,DC=domain,DC=company,DC=com

OU=DeptTWO,DC=my,DC=domain,DC=company,DC=com

David Pinkoski

Senior Analyst

Office: 586-826-7225

Fax: 586-826-7325

dpinkoski@michigan.com

www.michigan.com

I think you’ll have to use the Search Filter, with the BaseDN being the root of the tree.

Something like:

(&(memberof=OU=Information Techs,OU=DeptONE,DC=my,DC=domain,DC=company,DC=com)(memberof=OU=sys,OU=Users,OU=DeptTWO,DC=my,DC=domain,DC=company,DC=com))

Not the most efficient, but it’ll probably work.

Kris Lou 30.01.2015 19:08:

I think you'll have to use the Search Filter, with the BaseDN being the
root of the tree.

Something like:
(&(memberof=OU=Information Techs,OU=DeptONE,DC=my,DC=
domain,DC=company,DC=com)(memberof=OU=sys,OU=Users,OU=DeptTWO,DC=
my,DC=domain,DC=company,DC=com))

Shouldn't that be (|(memberof=...))? I do not think that the users are defined in both subtrees.

Not the most efficient, but it'll probably work.

Well, I have a list of about 20 single uids, since my admins are spread all over the tree...

Regards,
Werner

My mistake! But you get the point …