How to filter AD roles or users using Sitecore’s LDAP module
source link: https://blog.coates.dk/2015/06/29/how-to-filter-ad-roles-or-users-using-sitecores-ldap-module/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
How to filter AD roles or users using Sitecore’s LDAP module
Problem
Every time I have used AD for providing access to Sitecore, the active directory (AD) structure is crazy and recently I had a customer that had over 18000 roles, which made it difficult to assign roles and it killed the performance of the Sitecore client, as each user had at least 500 roles. Therefore Sitecore to evaluate the combination of a lot of roles to determine if they had read access or not.
Initially I thought I would have to make own LDAP provider which derives from the standard provider, but I discovered this was not necessary as the LDAP module provides the functionality as standard.
Custom Filters
Custom Filter provide the ability to filter the roles and or users returned from the AD (see section 4.1 for full documentation).The custom filter uses the standard LDAP query syntax (see MSDN) to specify how the user or roles are filtered.
The following example ensures only roles, which contain Sitecore and or the special operations role; are imported into Sitecore. The Custom
According to Sitecore documentation, both the User and Role provider must have the same CustomFilter, and that is why the (objectCategory=person) is added so all users are also imported regardless of their name.
I hope this blog post will help others using LDAP to control what roles or users are shown within sitecore.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK