ak2766
Mar 29, 2022Nimbostratus
Complex AD Query
I've seen THIS THREAD and although helpful in understanding the syntax, it did not help for my specific situation,
We have an IdP that authenticates users via their uid. As such, I've configured the searchFilter as uid=%{session.logon.last.username} and this is currently working well. However, I'm trying give the end user the flexibility of entering either sAMAccountName || email || uid. I'm looking for something similar to this logic:
get details of user where %{session.logon.last.username} matches sAMAcccountName || email || uid
send uid of matched user to RADIUS
If this is doable, how?