Comments (8)
Ok, thanks for the info!
from ldapcp.
Hi @Tobias-08, thank you for your offer but it is no longer necessary, I finally implemented it and it will be available in the next version, that I hope to release very soon :)
from ldapcp.
@Yvand Perfect, thanks!
from ldapcp.
Hi Vegard,
indeed objectSid attribute is not supported because it requires to convert value between hexadecimal and string, which is not handled.
In the past I already investigated the feasibility and it didn't sound difficult to implement, but to be honest it's not my todo list for the moment.
thanks,
Yvan
from ldapcp.
Thanks for reply Yvand. Just wanted clarification/confirmation. I would pobably stick to the augmentation future which works like a charm. At least until AD admin starts restructuring :P
Vegard
from ldapcp.
Hi,
I know this is an old post, but just wanted to know if this SID to string feature has been implemented in LDAPCP? =)
I'm currently in a situation where a new organization is moving to use our intranet and they are constantly renaming their AD Groups for various reasons and they have to remove those old AD groups from our Intranet sites and add again with the new names for them to function. They have been using Group SIDs in their old intranet so they have had no issues before with renaming AD groups. I don't know yet if they have had some kind of conversion from SID to string to show the actual Group Names in Sharepoint, but I'm sure that they are not using LDAPCP in their old intranet.
I just found out from a post from another site that this is how it is if using Role claims in ADFS. To solve the issue we should change from using Role claim to Group SID claim for AD groups, but as mentioned in this post that would display those AD groups only with those SIDs which is not useful for users.
from ldapcp.
Hi, I understand the impact in your scenario and indeed, SID would address it, but LDAPCP still does not support SID.
Implementing it would be quite a big work
from ldapcp.
Hi, I am interested in implementing this.
@Yvand: Would you mind sharing the main steps needed for this feature? My naive approach for the conversion would have been using the SecurityIdentifier class. But maybe I am missing the difficulties. Where would the conversion logic have to be called?
Thanks!
Tobias
from ldapcp.
Related Issues (20)
- Customization in LDAP solution HOT 3
- Replay LDAP query test returned user account result but people picker doesn't return this user account HOT 8
- Target Audience not working for LDAPCP groups added to sharepoint groups HOT 6
- LDAPCP on a non-ADFS federated setup HOT 2
- Domain groups can't be added after resolving it in people picker HOT 5
- LDAPCP on a farm with Windows / Kerberos authentication HOT 2
- need to remove the users with (role) prefix HOT 2
- Using Custom LDAPCP wsp and standard LDAPCP wsp HOT 9
- LDAP Filter for Two Classes HOT 4
- Augmentation does not work with Nintex Workflow and Other third party HOT 4
- Searching by Name on samAccountName HOT 2
- User Can't receive emails HOT 2
- EntraCP claimprovider issue HOT 4
- [LDAPCPSE] After adding a LDAPS connection as second option, going to global config page will error out HOT 21
- LDAPCPSE An item with LDAP newAttribute 'userPrincipalName' and LDAP class 'user' already exists for the object type 'User' HOT 10
- LDAPCP Second Edition - MaxSearchResultsCount. HOT 3
- [LDAPCPSE] question about search result windows size in peoplepicker HOT 4
- Filter on Active user by default HOT 5
- Unable to Connect to LDAP for the following reason: Unknow error (0x80005000) HOT 8
- Security regrading the package HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ldapcp.