Custom Attributes are not populated with LDAP values

book

Article ID: 160271

calendar_today

Updated On:

Products

Data Loss Prevention Enforce

Issue/Introduction

LDAP plugin for custom attribute lookup is set up and loaded correctly. However, the custom attributes are not populated with LDAP values.

Resolution

Scenario:

- The LDAP plugin for custom attribute lookup is set up according to the 'LDAP Configuration' document.
- The plugin loaded succesfully and the Attribute Lookup completed without any errors.
- However, Custom Attributes are not populated with LDAP values.

Verification steps after custom attribute lookup is set up and loaded:

  1. Restart Enforce server
  2. Navigate to Custom Attributes page (Administration -> Attributes -> Custom Attributes tab) and click Reload Lookup Plug-ins.  Make sure you get a green success message.
  3. Under the Reports section, navigate to an incident snapshot and look up custom attributes on the right-hand side. Verify that attribute values are populated. 

Resolution:
If manager is not defined in LDAP, all Manager attributes are filled with sender values.

attr.Manager = :(mail=$sender-email$):manager
attr.Manager\ First\ Name = :(distinguishedName=$Manager$):givenName
attr.Manager\ Last\ Name = :(distinguishedName=$Manager$):sn
attr.Manager\ Phone = :(distinguishedName=$Manager$):telephoneNumber
attr.Manager\ Email = :(distinguishedName=$Manager$):mail