Does OpenDJ support Hybrid Groups?

This topic has 2 replies, 3 voices, and was last updated 4 years, 11 months ago by 12315641.

  • Author
    Posts
  • #19378
     willfranco
    Participant

    Does OpenDJ support hybrid group membership?

    A hybrid group membership is described by a combination of static, dynamic, and nested member types. For example:

    Let say you define the following groups:

    1) a Dynamic Group called MyDynamicGroup:

    dn: cn=MyDynamicGroup,ou=dynamicGroups,dc=example,dc=com
    cn: MyDynamicGroup
    objectClass: top
    objectClass: groupOfURLs
    ldap:///ou=groups,dc=example,dc=com??sub?(myAttribute=1e938ce2-a974-43ac-98d0-f77f1317e79a)

    2) a Static Group called MyStaticGroup:

    dn: cn=MyStaticGroup,ou=groups,dc=example,dc=com
    cn: MyStaticGroup
    objectClass: top
    objectClass: MyObject
    objectClass: groupOfNames
    myAttribute: 1e938ce2-a974-43ac-98d0-f77f1317e79a
    member: [email protected],ou=users,dc=example,dc=com

    3) The expectation is that [email protected]’s group membership should include the entire hierarchy:
    isMemberOf: cn=MyDynamicGroup,ou=dynamicGroups,dc=example,dc=com
    isMemberOf: cn=MyStaticGroup,ou=groups,dc=example,dc=com

    The issue is that when I execute the following command:

    ldapsearch -h localhost -p 389 -D “cn=Directory Manager” -w password -b dc=example,dc=com “([email protected])” isMemberOf

    It only returns the static group membership entry:

    isMemberOf: cn=MyStaticGroup,ou=groups,dc=example,dc=com

    Thanks.

    #19413
     Michelle Reagin
    Participant

    Nested groups are supported. You may find the documentation in the Developer’s Guide for your relevant version.

    For DS 5.5: https://backstage.forgerock.com/docs/ds/5.5/dev-guide/#nested-groups

    For OpenDJ 3.5: https://backstage.forgerock.com/docs/opendj/3.5/server-dev-guide/#nested-groups

    #19418
     12315641
    Participant

    1

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?