Properties

Manage group members for a selected Active Directory group.

Requirements

An LdapClient module deployed with matching name as defined in "namespace".

Configuration

Name

Desciption

Default value

Mandatory

type

Must be

ActiveDirectoryGroupEditGroupMember

N/A

namespace

Identifier of LdapClient module to use

"default"

columns

List array with columns to display

["displayName", "mail", "mobile"]

base_dn

Search base DN.

"DC=company,DC=local"

scope

Search scope.

"SUB"

current_filter

Search filter. Used to fetch current members of the group.

N/A

available_filter

Search filter. Used to fetch available members of the group.

N/A

  {
    "id": "adGroupMember",
    "type": "ActiveDirectoryGroupEditGroupMember",
    "config": {
        "namespace": "ldap_client_1",
        "base_dn": "DC=company,DC=local",
        "scope": "SUB",
        "current_filter": "memberOf={{{flow.findMyActiveDirectoryGroups}}}",
        "available_filter": "(&(|(objectClass=user)(objectClass=group))(!(memberOf={{{flow.findMyActiveDirectoryGroups}}})))",
        "columns": [
            "displayName",
            "mail",
            "sAMAccountName",
            "mobile"
        ]
    }
}

This control works in conjunction with LdapClient module. It must be installed.

Exposed data to flow

Object array, "ad_pending_remove" - contains data on what members to remove from group.

Object array, "ad_pending_add" - contains data on what members to add to group.

Example data in finalize pipe:

...
"ad_pending_add" : [ 
    { 
        "id" : "CN=Felix Andreasson,OU=Demo,DC=company,DC=local", 
        "displayName" : "Felix Andreasson" 
    }, 
    { 
        "id" : "CN=Eva Ek,OU=Demo,DC=company,DC=local", 
        "displayName" : "Eva Ek" 
    } 
],
"ad_pending_remove" : [ 
    { 
        "id" : "CN=Lance Armsson,OU=Demo,DC=company,DC=local", 
        "displayName" : "Lance Armsson" 
    }, 
    { 
        "id" : "CN=Britt Thomasson,OU=Demo,DC=company,DC=local", 
        "displayName" : "Britt Thomasson" 
    } 
]
...

Valves used in finalize pipe

ActiveDirectoryAddGroupToMembers

Used to add group members to a specified group

ActiveDirectoryRemoveGroupFromMembers

Used to remove group members from a specified group

PreviousActiveDirectoryGroupEditGroupMember NextActiveDirectoryUserEditGroupMember

{ "id": "adGroupMember", "type": "ActiveDirectoryGroupEditGroupMember", "config": { "namespace": "ldap_client_1", "base_dn": "DC=company,DC=local", "scope": "SUB", "current_filter": "memberOf={{{flow.findMyActiveDirectoryGroups}}}", "available_filter": "(&(|(objectClass=user)(objectClass=group))(!(memberOf={{{flow.findMyActiveDirectoryGroups}}})))", "columns": [ "displayName", "mail", "sAMAccountName", "mobile" ] } }

... "ad_pending_add" : [ { "id" : "CN=Felix Andreasson,OU=Demo,DC=company,DC=local", "displayName" : "Felix Andreasson" }, { "id" : "CN=Eva Ek,OU=Demo,DC=company,DC=local", "displayName" : "Eva Ek" } ], "ad_pending_remove" : [ { "id" : "CN=Lance Armsson,OU=Demo,DC=company,DC=local", "displayName" : "Lance Armsson" }, { "id" : "CN=Britt Thomasson,OU=Demo,DC=company,DC=local", "displayName" : "Britt Thomasson" } ] ...