Skip to content
  • Register

    • Oracle Analytics Cloud and Server

    Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Log In
    Register

    Quick Links

    Categories

    Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

    LDAP filter out disabled users

    Received Response
    324
    Views
    27
    Comments
    2

    Answers

    • Rank 4 - Community Specialist

      I am sorry I do not know much of what you are asking.  I have only been on 12c for about 3 months.  We were on 10g prior to this and the weblogic and Authenticator setup is completely new.  The only thing I know about is on this page.

      msadauthenticator.jpg

      I have the filters on the User From Name Filter:  and it works in the weblogic group search.

      Here is a disabled user lookup when the filter is not on.

      msadauthenticator lookup no filter.jpg

      and here is with the filter on:

      msadauthenticator lookup with filter.jpg

    • Rank 4 - Community Specialist

      Does anyone have any idea where the Recipient list is derived from.  Where the settings are located.  If I can find that then I can filter this list to report the disabled. 

    • Rank 2 - Community Beginner

      If this is the case then the problem is definitely on the integration side and the MSAD guys have to provide a means of filtering with an LDAP query.

    • Rank 2 - Community Beginner

      Recipients are security principals of type "User". So everything that comes from the WLS security realm.

    • Rank 4 - Community Specialist

      If that is the case: So everything that comes from the WLS security realm,  then what I am seeing is odd.  When I got to the security realm and do a search for 1 of the disabled users I do not find them, however when I search for them on the Recipient list I do. 

           Security Realm search:

      security realm search.jpg

           Recipient search:

      Recipients Search.jpg

      What am I missing or doing wrong. 

      BTW, Thank you for look at this with me.  I really appreciate it. 

    • Rank 2 - Community Beginner

      In your screenshot I see "Filter by Prover" set to "MSADAuthenticator". Do you have several provider where she could come from?

      RPD-based should be out of the question, right? There's nothing driving security in your RPD like it was in legacy implementations?

    • Rank 4 - Community Specialist

      There should not be.  And I just tried the lookup for this users using All providers and I still don't find them. 

      security realm search all providers.jpg

    • Rank 2 - Community Beginner

      Consider me baffled. Have you restarted the environment after doing the filter changes in the MSAD connection? Are you caching the MSAD query results with some monstrously high values by any chance?

    • Rank 4 - Community Specialist

      Yes I have restarted the environment.   I don't believe the cache size is to big?  I can't see your image.

      msad cache.jpg

    • Rank 2 - Community Beginner

      No that's standard / default when you create an MSAD provider.

      @Gianni Ceresa do you have any idea?

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Log In
    Register