Environment
Novell eDirectory 8.7 for All Platforms
Novell eDirectory 8.8 for All Platforms
Situation
Unable to create dynamic groups based on specific attributes
Unable to create dynamic group based on the OU attribute
ERROR: No entries found
ERROR: No results returned
Unable to create dynamic group based on the OU attribute
ERROR: No entries found
ERROR: No results returned
Resolution
Dynamic groups by default use the [Public] trustee rights to search
eDirectory. This only allows some limited search functionality by
default. In other words only attribute entries marked for
PUBLIC_READ or attributes with Read trustee right given for the
[Public] object are readable. Most of the attributes are not
searchable on this way, therefore it is necessary to specify a user
that the dynamic group can use during its search. You can specify
it using iManager on the following way:
Open iManager, choose "Modify Group" under the "Groups" role. Browse to the group you would like to modify and choose the"Dynamic" page. Under the "Settings" tab you can specify the"Identity object" which serves as the user to query the database for dynamic group.
Dynamic group will be able to read as much information as this user can access.
Open iManager, choose "Modify Group" under the "Groups" role. Browse to the group you would like to modify and choose the"Dynamic" page. Under the "Settings" tab you can specify the"Identity object" which serves as the user to query the database for dynamic group.
Dynamic group will be able to read as much information as this user can access.