How to map OpenLDAP (fusiondirectory) roles to Nextcloud groups?

do you know if it’s possible to map OpenLDAP (fusiondirectory) “roles” to Nextcloud “groups” ?

With an openldap (fusiondirectory) where the “member of” overlay is not present, but with “roles” defined instead, like this :

All the roles (groups) are in

ou=roles,dc=ecolo,dc=lan

example :
cn=group1,ou=roles,dc=ecolo,dc=lan
cn=group2,ou=roles,dc=ecolo,dc=lan

and the members of the group are defined in the role with the attribute “roleOccupant”

example:
cn=group1,ou=roles,dc=ecolo,dc=lan
roleOccupant |uid=misterA,ou=people,dc=ecolo,dc=lan
roleOccupant |uid=misterB,ou=people,dc=ecolo,dc=lan
roleOccupant |uid=MissC,ou=people,dc=ecolo,dc=lan

I have tried to play with the “advanced” ldap config, indicating the root dn for the groups (ou=roles,dc=ecolo,dc=lan) but with no success. The “groupe-member association” field is a dropdown-list with no possibility to indicate “roleOccupant”.
Maybe the “Dynamic group memeber URL” could help, but I don’t figure how.

Can someone help ?

Thank you in advance !

Vincent

1 Like