I configured my new Wiki with auth ad to use SSO. The authentication works just fine but mapping a user group to superusers doesn't work. When I type an logon name this user is mapped as superuser but I want a user-group to be superuser - IT department. I configured the wiki with auth ldap in the first step but we want to have SSO therefore I switched to auth ad.
Any ideas will be appreciated as I just haven't a clue. Thanks.
local.php:
-----------------------------
$conf['allowdebug'] = 1;
$conf['disableactions'] = 'register';
$conf['showuseras'] = 'username';
$conf['useacl'] = 1;
$conf['manager'] = '@All Information Systems';
$conf['superuser'] = '@All Information Systems';
$conf['registernotify'] = '
my@mail.de';
$conf['htmlok'] = 1;
$conf['subscribers'] = 1;
$conf['plugin']['mailto']['mailto_acl_grps'] = '@All Information Systems';
$conf['plugin']['mailto']['mailto_signature'] = 'Sent via Wiki';
$conf['authtype'] = 'ad';
$conf['auth']['ad']['account_suffix'] = '@domain.com';
$conf['auth']['ad']['base_dn'] = 'DC=domain,DC=com';
$conf['auth']['ad']['domain_controllers'] = '10.1.17.244';
$conf['auth']['ad']['ad_username'] = '
admin@domain.com';
$conf['auth']['ad']['ad_password'] = 'pass';
$conf['auth']['ad']['sso'] = 1;
$conf['auth']['ad']['real_primarygroup'] = 0;
$conf['auth']['ad']['use_ssl'] = 1;
$conf['auth']['ad']['debug'] = 0;
$conf['auth']['ad']['recursive_groups'] = 1;
the former auth ldap configuration worked
$conf['auth']['ldap']['server'] = '10.1.17.244';
$conf['auth']['ldap']['binddn'] = '
admin@domain.com';
$conf['auth']['ldap']['bindpw'] = 'pass';
$conf['auth']['ldap']['usertree'] = 'DC=domain,DC=com';
$conf['auth']['ldap']['grouptree'] = 'DC=domain,DC=com';
$conf['auth']['ldap']['userfilter'] = '(&(sAMAccountName=%{user}))';
$conf['auth']['ldap']['groupfilter'] = '(&(cn=*)(Member=%{dn})(objectClass=group))';
$conf['auth']['ldap']['mapping']['name'] = 'displayname';
$conf['auth']['ldap']['mapping']['grps'] = 'array(\'memberof\' => \'/CN=(.+?),/i\')';
$conf['auth']['ldap']['referrals'] = '0';
$conf['auth']['ldap']['version'] = '3';
$conf['auth']['ldap']['debug'] = '0';
Anyone please?