HI all,
I've spent the last good part of a week reading posts regarding Active Directory LDAP integration and shared rosters and while I seem to have worked out the kinks in the AD LDAP authentication I cannot for the life of me figure out how to automatically add all the users that belong to the AD Group to everyone's contact list..
I am by far no expert when it comes to LDAP/AD but what I have working now is a sub group in the AD with all actual users assigned to it. When I log into the web interface I do actually see everyone that I want to be included in the IM. Any user can log in and when they do it automatically converts their name to their actual CN (first an last name) from the AD. All of this is very cool but when it comes to adding everyone to everyone's contact list I'm hitting a brick wall. I've tried several different examples and when I look at the logs it appears that the roster is being built but nothing ever shows up on the client end.
Does anyone have a working example that I can start with ? basically I want to see everyone that is part of the group
CN=InstantMessaging,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=companyname,DC=local, and display the cn of the user (which works out to the first and last name) Please don't judge the AD configuration :) I wasn't the one who set this up initially, I know the originally had a SBS server and have migrated a couple of times since. Obviously the OU's kept being tacked on to.
What I have now is this which obviously isn't working unless I've done something else wrong that is preventing it from displaying ? and again this is part of an example that I found online
mod_shared_roster_ldap:
ldap_groupattr: "cn"
ldap_groupdesc: "description"
ldap_memberattr: "member"
ldap_memberattr_format: "CN=%u,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=company,DC=local"
ldap_useruid: "cn"
ldap_userdesc: "displayName"
ldap_rfilter: "(&(objectClass=group)(info=InstantMessaging))"
ldap_gfilter: "(&(objectClass=group)(info=InstantMessaging)(cn=%g))"
ldap_ufilter: "(&(objectClass=user)(cn=%u))"
ldap_filter: ""
Can anyone point me towards a solution ?
