Awx: Docs on LDAP org/team mapping refer to email address which has no bearing on anything
ISSUE TYPE
- Documentation
SUMMARY
The LDAP admin documentation states:
Next, you will need to control which users are placed into which Tower organizations based on their username and email address (mapping out between your organization admins/users and LDAP groups).
But the email address is never used in any of the following examples. And I think it shouldn't have a bearing on anything anyhow since LDAP is just the directory service, users there don't necessarily have email addresses.
psy-q
All 5 comments
@psy-q, the references to the email attribute is referenced in step 15. However, I will make it more clear in the docs to prevent confusion.
tvo318
on 4 Apr 2018
Yes, it's true that email is used further up, but that map in step 15 only specifies which LDAP attributes are mapped to which field in AWX.
Section 15.3, where the quote is from, is about something else: the section explains how you can map users to organizations based on their CN, so neither username nor e-mail address is used. That's why I thought the introduction sentence isn't correct. Unless there is some way to use usernames/e-mail in place of CNs in that config, but that isn't explained or shown in the example.
psy-q
on 4 Apr 2018
Next, you will need to control which users are placed into which Tower organizations based on LDAP attributes (mapping out between your organization admins/users and LDAP groups).
@psy-q What do you think about the wording above?
chrismeyersfsu
on 5 Apr 2018
Absolutely fantastic, cheers :)
psy-q
on 7 Apr 2018
Resolved with doc PR #369.
tvo318
on 23 Aug 2018
Related issues
FloThinksPi
路
3Comments
IshwarKanse
路
3Comments
pebbledavec
路
3Comments
artmakh
路
3Comments
darkaxl
路
3Comments
Most helpful comment
@psy-q What do you think about the wording above?