[DOCS-11916] LDAP User Group Deprecation Notice is Incorrect Created: 24/Jul/18  Updated: 29/Oct/23  Resolved: 05/Oct/18

Status: Closed
Project: Documentation
Component/s: Ops Manager
Affects Version/s: None
Fix Version/s: ops-manager-3.6

Type: Bug Priority: Major - P3
Reporter: Kip Iwakiri (Inactive) Assignee: Robert Justice (Inactive)
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: PNG File ldap.png    
Issue Links:
Depends
Participants:
Days since reply: 5 years, 18 weeks, 5 days ago
Epic Link: DOCSP-1743
Story Points: 0.2

 Description   

----------------------------

Original Description

Affects 3.6 and 4.0 docs - notice should probably exist in 3.4 docs as well.

https://docs.opsmanager.mongodb.com/v3.6/tutorial/configure-for-ldap-authentication/#type-ldap-configuration-settings

Specifically this text:

The memberOf LDAP user attribute is deprecated in favor of the member LDAP user attribute.
 
If you specify both user attributes in the LDAP User Group field, Ops Manager uses member and ignores memberOf. If you specify only memberOf, Ops Manager will not recognize the user’s membership in nested LDAP groups.

While memberOf will no longer exist in the new search, the field being deprecated is LDAP User Group which is being replaced by LDAP Group Member Attribute as seen in the UI below:

I recommend updating the notice to something similar to the following:

Changed in version 3.6.
 
The LDAP User Group field is deprecated in favor of the LDAP Group Member Attribute.
 
If you specify attributes in both the LDAP User Group field and LDAP Group Member Attribute, Ops Manager uses the attribute in LDAP Group Member Attribute and ignores LDAP User Group. If you specify only LDAP User Group, Ops Manager will not recognize the user’s membership in nested LDAP groups.

----------------------------

Description

Scope of changes (files that need work and how much)

Impact to other docs outside of this product

MVP (work and date?)

Resources (e.g. Scope Docs, Invision)



 Comments   
Comment by Githook User [ 05/Oct/18 ]

Author:

{'name': 'rob-mongodb', 'email': 'rob.justice@10gen.com', 'username': 'rob-mongodb'}

Message: (DOCS-11916) Added LDAP Group Member Attribute field + revised description of LDAP User Group field.

(DOCS-11916) Review by James Broadhead.

(DOCS-11916) Review by James B.
Branch: v3.6
https://github.com/10gen/mms-docs/commit/6c9afb753f2444dd92e3b89ad90f2e887b07135f

Comment by Githook User [ 05/Oct/18 ]

Author:

{'name': 'rob-mongodb', 'email': 'rob.justice@10gen.com', 'username': 'rob-mongodb'}

Message: (DOCS-11916) Added LDAP Group Member Attribute field + revised description of LDAP User Group field.

(DOCS-11916) Review by James Broadhead.

(DOCS-11916) Review by James B.
Branch: v4.0
https://github.com/10gen/mms-docs/commit/8cc5d2d9de245131ead60b9a1bc5efe92335be51

Comment by Githook User [ 04/Oct/18 ]

Author:

{'name': 'rob-mongodb', 'email': 'rob.justice@10gen.com', 'username': 'rob-mongodb'}

Message: (DOCS-11916) Added LDAP Group Member Attribute field + revised description of LDAP User Group field.

(DOCS-11916) Review by James Broadhead.

(DOCS-11916) Review by James B.
Branch: master
https://github.com/10gen/mms-docs/commit/e861e0dbffa852a9c5653d3bb45392c22f3e2d74

Comment by Robert Justice (Inactive) [ 03/Oct/18 ]

james.broadhead, thank you for the review! Updated and ready for another look.

Comment by James Broadhead (Inactive) [ 01/Oct/18 ]

rob.justice

  • OM 3.6
  • "LDAP User Group" is deprecated - see the light-grey text in the UI.
    Deprecated in this case means "discouraged, pending removal".
Comment by Ralph Capasso [ 29/Sep/18 ]

rob.justice I think someone from the OpsManager team will need to answer these questions. I can only answer for the Atlas interface which is different.

Generated at Thu Feb 08 08:03:57 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.