RE: Liferay user groups not updated after AD group changes for users.

Vishnu S Kumar, modified 3 Years ago.

Liferay user groups not updated after AD group changes for users.

Regular Member Posts: 131 Join Date: 7/28/17 Recent Posts

Liferay DXP 7.0 has a login setup using LDAP. Login works fine and user data is updated correctly including the AD groups on the first login. However, when an AD group of the user is updated after the first login, no changes are picked up from the AD the next time when the user login into Liferay. Specifically, if a user is removed from Group A in AD, the subsequent user in Liferay will still have group A. Similarly, if the User in AD is given a new group, it's not updated in Liferay when the user login.

Zsigmond Rab, modified 3 Years ago.

RE: Liferay user groups not updated after AD group changes for users.

Liferay Master Posts: 764 Join Date: 1/5/10 Recent Posts

Hi Vishnu,

Can you see any exceptions in the portal log? Have you tried to debug already to see where it fails?

Regards,

Zsigmond

Vishnu S Kumar, modified 3 Years ago.

RE: RE: Liferay user groups not updated after AD group changes for users.

Regular Member Posts: 131 Join Date: 7/28/17 Recent Posts

Hi Zsigmond,

There is no error in the console and all looks good. It's just the AD groups are not updating for the user. Everything updates fine when the user first logs in but thereafter any changes on AD are not reflected on the user.

Regards,

Vishnu

Zsigmond Rab, modified 3 Years ago.

RE: RE: Liferay user groups not updated after AD group changes for users.

Liferay Master Posts: 764 Join Date: 1/5/10 Recent Posts

Hi Vishnu,

Sorry, then I could debug only what's happening. Without that it's hard to say anything. It helps if we know where the update fails.

Zsigmond

Vishnu S Kumar, modified 3 Years ago.

RE: RE: Liferay user groups not updated after AD group changes for users.

Regular Member Posts: 131 Join Date: 7/28/17 Recent Posts

This is the same issue we're facing as well. Without any error logs it's hard to debug this issue. I was thinking of creating an authentication pipeline and update the groups in Liferay & AD. Can you please give me an insight on the LDAP class (Used by Liferay) that I can use for this purpose.?

Regards,

Community

Company

Feedback

Ask Questions and Find Answers

Important:

Ask is now read-only. You can review any existing questions and answers, but not add anything new.

But - don't panic! While ask is no more, we've replaced it with discuss - the new Liferay Discussion Forum! Read more here here or just visit the site here:

discuss.liferay.com

RE: Liferay user groups not updated after AD group changes for users.