AD/LDAP-Based User Attributes

User attributes can be sourced from your AD/LDAP system, incorporating property values for a particular user as the attribute. To use AD/LDAP-based user attributes, you must have AD/LDAP group resolution configured, as these use the same configuration.

After you have the base configuration set up using the link above, configure which AD/LDAP properties to use as user attributes by specifying the following configuration property:

LDAP_USER_ATTRIBUTES: property1,property2,...propertyN

Only properties that are explicitly listed are incorporated as user attributes. This avoids polluting the user attributes with all the available LDAP properties.