<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:07:10 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[DOCS-13199] Suggestions for additional notes on Ops Manager LDAP</title>
                <link>https://jira.mongodb.org/browse/DOCS-13199</link>
                <project id="10380" key="DOCS">Documentation</project>
                    <description>&lt;p&gt;Suggestions for additional notes on &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/tutorial/configure-for-ldap-authentication/#associate-ldap-groups-with-project-roles&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://docs.opsmanager.mongodb.com/current/tutorial/configure-for-ldap-authentication/#associate-ldap-groups-with-project-roles&lt;/a&gt; and &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/reference/api/groups/map-ldap-groups-to-manager-roles/&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://docs.opsmanager.mongodb.com/current/reference/api/groups/map-ldap-groups-to-manager-roles/&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Customers have been unclear about how to add a user to a group/project with certain roles using the Ops Manager API.&lt;/p&gt;

&lt;p&gt;We might want to include notes mentioning that:&lt;br/&gt;
1. Once Ops Manager has been configured to use LDAP for access to the web UI no other authentication mechanisms will be used. This means that no users will be added or modified in the backing databases, which is what the API provides access to. To add new users to Ops Manager, you would need to add them to the LDAP directory used by your organization and ensure they are members of &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/tutorial/configure-for-ldap-authentication/#associate-ldap-groups-with-project-roles&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;LDAP groups that map to roles in your Ops Manager deployment&lt;/a&gt;. &lt;br/&gt;
Again - no user &lt;em&gt;management&lt;/em&gt; happens in Ops Manager, all such activity is delegated to the LDAP server.&lt;/p&gt;

&lt;p&gt;2. For security reasons, it is not possible to add users to your LDAP server using Ops Manager. &lt;/p&gt;

&lt;p&gt;3. All user management (which user participates in which group(s)) is done in LDAP.&lt;br/&gt;
LDAP in Ops Manger will require Group DN assignments.&lt;/p&gt;

&lt;p&gt;4. You can use the API to manage the relationship in Ops Manager. eg: Which LDAP group(s) correspond to which &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/reference/user-roles/#user-admin-role) (such as GROUP_DATA_ACCESS_READ_ONLY&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Ops Manager roles&lt;/a&gt; in a particular OM project&lt;/p&gt;

&lt;p&gt;5. If using LDAP, you would create one or many LDAP groups containing Users. Example `OM_RO_MyProject`&lt;br/&gt;
You would then use the API (or the UI) to &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/reference/api/groups/map-ldap-groups-to-manager-roles/&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Map LDAP Groups to Ops Manager Roles&lt;/a&gt; giving the Users in that LDAP Group the desired &lt;a href=&quot;https://docs.opsmanager.mongodb.com/current/reference/user-roles/#user-admin-role&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Project Role&lt;/a&gt;. &lt;/p&gt;


&lt;p&gt;6. If the requirement is to have a single read-only group across multiple projects - you would use API calls to associate that LDAP group with the Role (example: GROUP_READ_ONLY) for the required Ops Manager  projects. &lt;br/&gt;
If the requirement is to have a different read-only group assigned to individual projects - you would use API calls to associate that LDAP group with the Role (example: GROUP_READ_ONLY) to the specific project.&lt;/p&gt;</description>
                <environment></environment>
        <key id="989582">DOCS-13199</key>
            <summary>Suggestions for additional notes on Ops Manager LDAP</summary>
                <type id="3" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14718&amp;avatarType=issuetype">Task</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="10038" iconUrl="https://jira.mongodb.org/images/icons/subtask.gif" description="">Backlog</status>
                    <statusCategory id="2" key="new" colorName="default"/>
                                    <resolution id="-1">Unresolved</resolution>
                                        <assignee username="-1">Unassigned</assignee>
                                    <reporter username="charles.merrill@mongodb.com">Charles Merrill</reporter>
                        <labels>
                            <label>request</label>
                    </labels>
                <created>Tue, 5 Nov 2019 01:10:43 +0000</created>
                <updated>Tue, 14 Nov 2023 15:23:44 +0000</updated>
                                                                            <component>Ops Manager</component>
                        <due></due>
                            <votes>0</votes>
                                    <watches>1</watches>
                                                                                                                        <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_11450" key="com.atlassian.servicedesk:vp-origin">
                        <customfieldname>Customer Request Type</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        4 years, 14 weeks, 2 days ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>melissa.mahoney@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            4 years, 14 weeks, 2 days ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                            <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>charles.merrill@mongodb.com</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hw0j8n:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hvov9r:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hw05hz:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                </customfields>
    </item>
</channel>
</rss>