I have a scenario where i have configured my LDAP Query Roles like this
- Role1 → mapped to a query (e.g. JobCode=100)
- Role2 → mapped to a query (e.g. JobCode=200)
Users:
- John → JobCode=100
- Mischell → JobCode=100
- Sam → JobCode=200
- Tim → JobCode=100
Now, i want to remove Tim (JobCode=100) from Role 1 and assign him to Role2 without changing his jobcode.
So, my question is that how can i remove my user from LDAP query role without changing the user parameter which is bound in the ldap query on the role.
PS: LDAP Query Syntax is just a pseudo.