LDAP permissions needed for users to run schedules


If you are trying to set up LDAP with IDM in OO, and end up with LDAP users unable to run schedules, this might be the problem.
The privileged user must have permission to do recursive search of objects (persons) under the configured three. This is because when running schedules with LDAP user, this user will not authenticate at the time of triggering (no password will be provided live for each triggering). Instead, this admin user has the ability to search the LDAP for the scheduler 's user, retrieve its LDAP groups and see if those LDAP groups are mapped to roles and if user is entitled to run the flow.


Support Tip
Comment List
Related Discussions