Role Equivalency by Attribute

  • coralseait

    (@coralseait)


    11 years ago

    Hello,

    I’m looking to use the plugin to build an intranet. The AD I’m authenticating with uses attributes to store what would be the best mapping to a WP Role – is it possible to filter or adjust the Role Mapping logic to use attribute (in this case; Title, which holds job description / role in this specific AD implementation)?

    Cheers!

    https://ww.wp.xz.cn/plugins/active-directory-integration/

Viewing 2 replies - 1 through 2 (of 2 total)
  • nwoetzel

    (@nwoetzel)

    10 years, 11 months ago

    Although it might be possible to do what you are asking, might I suggest to use the ‘Role equivalent groups’ mapping.
    Instead of using an AD attribute (like title), the cleaner way is to assign your users to particular AD groups (memberOf). The active-directory-integration plugin will then give the logged in user the role it finds as a first match in the ‘Role equivalent groups’.
    We are using it that way for our setup.

    You can even combine that with the ‘user-access-manager’ plugin and have a fine-grained way of restricting access to pages, posts and terms (like categories).

    Thread Starter coralseait

    (@coralseait)

    10 years, 11 months ago

    Hello,

    Thanks very much for the feedback. For this project, the way the AD is implemented and the complexity of their AD it is best to use title (which holds their roles within the AD).

    As a work around we’ve implemented some mapping based on ADI capturing AD Title in User Meta and then mapping via ACF options. It works very well, without filtering or requiring mod to your code AND without requiring a massive change to their legacy AD structure.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Role Equivalency by Attribute’ is closed to new replies.