Skip to content

AD/LDAP-based User Attributes

User attributes can be sourced from your AD/LDAP system, bringing in the value of properties for a particular user as the attribute. To utilize AD/LDAP-based user attributes, you will need to have AD/LDAP group resolution configured, as these utilize the same configuration.

Once you have the base configuration set up using the link above, you can configure which AD/LDAP properties to use as user attributes by specifying the following configuration setting:

LDAP_USER_ATTRIBUTES: property1,property2,...propertyN

Only properties that are explicitly enumerated will be brought in as user attributes, to avoid polluting the user attributes with all the available LDAP properties.