Hi,
We would like to limit access to a page to some organisational units within our LDAP AD bridge. However when I change the permissions on the page concerned using Permissions > Read > Change & selecting the OU the authentication works (User xxxx is currently logged on) but gets an error "You do not have permission to access…". What am I doing wrong?
Thanks in advance,
Susan
Is the page live? Read permission does not include read access to non-live assets (eg. Under Construction).
Also make sure the memberOf attribute for the user lists that OU so Matrix knows they are part of that group.
Will the OU show up in this attribute? In Active Directory, it doesn't -- I thought Matrix implied group membership to OUs though.
It shows up in AD, but not in OpenLDAP dirs we have seen. So we use OU in the user's DN for non-AD systems.
Ok, cool.
Thanks - it's fixed now. I needed to use the group rather than the OU to get this working.
Susan
Remember that in MySource Matrix v3.12 (at least, perhaps even in v3.10, but I'm not 100% sure on that) you can link LDAP users into MySource Matrix groups. This could make it even easier to manage group membership for your users.