Hi,
I’m trying to configure our Active Directory as the authn/authz backend for Indico. I followed the instructions in the documentation (https://docs.getindico.io/en/stable/config/auth/) and started from CERN example at the end of the page. Unfortunately, in our AD, userCategory
is not group
or user
but something like CN=Person,CN=Schema,CN=Configuration,DC=in2p3,DC=fr
that I didn’t succeed to match with a filter… Do you see any reason why we don’t have group/user as in the CERN example and as it seems to be documented in some MS docs (https://docs.microsoft.com/en-us/windows/desktop/adsi/search-filter-syntax).
I considered using objectclass
rather than objectcategory
but unfortunately computers also have objectClass: user
in addition to objectClass: computer
…
Michel