AnsweredAssumed Answered

SSO Group Membership Response

Question asked by lu.hu02 Employee on Nov 18, 2016
Latest reply on Nov 20, 2016 by lu.hu02

Hi

 

CA SSO has SM_USERGROUPS response header and this pulls back the DN of each group seperate by ^.

 

 

If the legacy application is expecting group name (cn) only seperated by comma ',' is there a configurable way to do that? 

 

We can do it via an Active Response but wondering if there was a none-coding way to do it. One benefit is this LDAP has memberOf attribute on the user object. Anyone done something similar?

 

Cheers

Outcomes