Mapping AD group to wordpress user role

  • Hello,

    I see that the current version of simpleSAMLphp just put the user in two role : Admin or subscriber based on a “flag” in EduPersonEntillement” attribute.
    Does anyone as modified the code to allow
    – user of “Member Of” attributes that is a mapping of AD security group (and or use of OU)
    – support for multi-group (so allow users to belong to different security group and only catch the one that is relevant for role mapping)

    Thx.

    https://www.ads-software.com/plugins/simplesamlphp-authentication/

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hey goloetmala

    Im not sure, totally what you are asking for.
    In a former topic (https://www.ads-software.com/support/topic/suggested-change-for-auto-administrator-with-person-entitlement) i have suggested a code change, to make a setting to change eduPersonEntitlement to memberOf, and also for making one of multiple groups give Admin access..
    It should also easily be updated for groups for other levels then Admin..

    Thread Starter goloetmala

    (@goloetmala)

    Hey Cautoo,

    Effectively I am looking to relay on MemberOf instead of EduPersonEntillement Attribute and having a way to map WordPress role to value set in “MemberOf” attribute.
    MemberOf value will be set set from AD group the user belongs to.

    your suggestion already allow to set a custom attribute like “Member Of” instead of PersonEduEntillement, however I would be glad to extended to other role beyond Admin (e.g. contributor)

    So
    1) Get the UI part that allow to set which value for “MemberOf” will be mapped to a give role (default = subscriber)
    2) coding part that will be effectively set the role to the user based on value found in “MemberOf”

    –> Anything done already ?

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Mapping AD group to wordpress user role’ is closed to new replies.