ldap with user filter
Posted: Thu Jul 14, 2011 7:36 am
I am using OMERO with an LDAP connection to a microsoft AD.
I've also set the omero.ldap.user_filter in a way so that only members of a specific security group can use OMERO.
This works nicely but when I remove a user from the security group in AD I would expect the user not to be able to logon to OMERO any more. But he still can. I guess the user_filter is only used when someone tries to logon that has never logged on before. Once the account is created in OMERO the user_filter isn't used anymore, right?
Or is there another way to get this behaviour?
to my feeling (as an IT admin not a scientist) this would ease the user management task.
Maybe something for furture releases?
thanks for your thoughts on this.
I've also set the omero.ldap.user_filter in a way so that only members of a specific security group can use OMERO.
This works nicely but when I remove a user from the security group in AD I would expect the user not to be able to logon to OMERO any more. But he still can. I guess the user_filter is only used when someone tries to logon that has never logged on before. Once the account is created in OMERO the user_filter isn't used anymore, right?
Or is there another way to get this behaviour?
to my feeling (as an IT admin not a scientist) this would ease the user management task.
Maybe something for furture releases?
thanks for your thoughts on this.