Environment
Novell eDirectory 8.8
Novell iManager 2.7.4
Dynamic Groups
Novell iManager 2.7.4
Dynamic Groups
Situation
A dynamic group is created, but no members or not all members are returned even though there are users with the attributes populated with values as thoses specified in the search filter of the dynamic group.
Resolution
By default the [Public] user is used to search the tree and retrieve members that meet the criteria specified in the search filter of the dynamic group. If the [Public] user does not have rights to read the attribute(s) specified in the search filter.
Rights to the attribute(s) can be added to the [Public] user which might not be desirable, or change the Identity object to admin or another user that has rights to read the attribute(s) or objectclass(es) as specified in the search filter.
To change the Identity Object:
Rights to the attribute(s) can be added to the [Public] user which might not be desirable, or change the Identity object to admin or another user that has rights to read the attribute(s) or objectclass(es) as specified in the search filter.
To change the Identity Object:
- Edit the dynmamic group in iManager.
- Click on the 'Dynamic' tab, the 'Settings' link under the 'Dynamic' tab. By default the Identity Object is [Public].
- Change the Identity Object to a user that has rights to read the attributes requested or a user with supervisiory rights like admin.