Skip to main content

Creating groups

Some LDAP schemas, such as OpenLDAP, require that a groupOfUniqueNames MUST have a uniqueMember (RFC2256). This means that it is mandatory for all groups to contain at least one member.

By default, when creating a group, Bravura Security Fabric does not enforce this rule. To enable group creation in LDAP schemas that require a uniqueMember, create the following registry entry:

Entry name ldapDefaultUniqueMember

Value name of unique member

Data type REG_SZ

in this key:

HKLM\SOFTWARE\Bravura Security\Bravura Security Fabric\<instance>\

If this entry is present, the uniqueMember attribute is replaced with the string value when a group is created in Bravura Identity . This value does not have to be a real user.

In this section: