[ejabberd] mod_shared_roster_ldap config help

Kristian Davies kristian.davies at gmail.com
Thu Nov 10 14:26:55 MSK 2011


> {ldap_base, "OU=Employees,OU=People,DC=ad,DC=abc,DC=local"}.
> {ldap_filter, "(&(ObjectClass=user)(!(ObjectClass=computer))(!(userAccountControl:1.2.840.113556.1.4.803:=2))(!(ou=Disabled_Users))(!(ou=Boring_users))(!(ou=TEST)))"}.
>
> {mod_shared_roster_ldap,[
> {ldap_rfilter, "(&(objectClass=organizationalUnit)(!(ou=Disabled_Users))(!(ou=Boring_users))(!(ou=TEST))(!(ou=Employees)))"},
> {ldap_groupattr, "ou"},
> {ldap_gfilter, "(&(objectclass=user)(ou=%g,ou=Employees,ou=People,DC=ad,DC=abc,DC=local))"},
> {ldap_memberattr, "sAMAccountName"},
> {ldap_ufilter, "(sAMAccountName=%u)"},
> {ldap_userdesc, "displayName"}
> ]},

New setup:  Removed 2.1.8 centos version and installed 2.1.9 source
with the 2.0.7 alpha mod_shared_roster_ldap.erl file.

{ldap_group_base, "OU=Employees,OU=People,DC=ad,DC=abc,DC=local"},
{ldap_rfilter, "(&(objectClass=organizationalUnit)(!(ou=Disabled_Users))(!(ou=Boring_users))(!(ou=TEST))(!(ou=Employees)))"},
{ldap_groupattr, "objectGUID"},
{ldap_gfilter, "(objectGUID=%g)"},
{ldap_groupdesc, "ou"},
{ldap_member_selection_mode, group_children},
{ldap_ufilter, "(&(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(!(ou=Disabled_Users))(!(ou=Boring_users))(!(ou=TEST))(!(ou=Employees)))"},
{ldap_userdesc, "displayName"},
{ldap_useruid, "sAMAccountName"}
]},

Which..... seems to work!

I still have to look at the chattyness to AD and vcards and more
testing etc.  We will have 1300 users all friends of each other but
only 200 online at any one time.

-Kristian


More information about the ejabberd mailing list