AD/LDAP-Based User Attributes¶
User attributes can be sourced from your AD/LDAP system, incorporating property values for a particular user as the attribute. To use AD/LDAP-based user attributes, you must have AD/LDAP group resolution configured, as these use the same configuration.
After you have the base configuration set up using the link above, configure which AD/LDAP properties to use as user attributes by specifying the following configuration property:
LDAP_USER_ATTRIBUTES: property1,property2,...propertyN
Only properties that are explicitly listed are incorporated as user attributes. This avoids polluting the user attributes with all the available LDAP properties.