Duplicate userids across OpenAM realms

Tagged: , ,

This topic has 16 replies, 4 voices, and was last updated 5 years, 7 months ago by jax.

  • Author
    Posts
  • #8676
     jax
    Participant

    first way:
    base dn = dc=realm1,dc=openam,dc=forgerock,dc=org
    I can see top-level/others realms users!!! ,but i do not want.

    second way
    users of top-level/others realm is not visible which is my goal, but I can not add user/group for this realm, my settings is:

    LDAP People Container Value: realm1,ou=people
    LDAP Groups Container Value: realm1,ou=groups

    the error while create user/group:

    console : Plug-in org.forgerock.openam.idrepo.ldap.DJLDAPv3Repo: Unable to find entry: Entry uid=user1,ou=realm1\,ou=people,dc=openam,dc=forgerock,dc=org cannot be added because its parent entry ou=test1\,ou=people,dc=openam,dc=forgerock,dc=org does not exist in the server

    #8703
     jax
    Participant

    another things I’d like to talk about which also does not make sense is that when set Base DN = u=people,ou=finance,dc=example,dc=com, then it seems can not have groups. as usually Base DB is a parent container for people and groups, but now we mention it is just for people (starting part).

Viewing 2 posts - 16 through 17 (of 17 total)

You must be logged in to reply to this topic.

©2021 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?