Skip to content

Group LDAP links

Info

This section requires GitLab Premium (paid). (This is a GitLab's limitation, not GitLabForm's.)

This section purpose is to manage group membership via LDAP.

Key names here are just any labels, except if the key name is enforce and is set to true - then only the group LDAP links defined here will remain in the group, all other will be deleted.

Values are like documented at LDAP Group Links section of the Groups API docs, except the id.

The provider should be set to a value that can be found in the GitLab web UI, here:

group-ldap-links-provider.png

- it's "ldapmain" in this example.

The access_level should be set to one of the valid access levels.

Example:

projects_and_groups:
  group_1/*:
    group_ldap_links: 
      devops_are_maintainers: # this is just a label
        provider: AD
        cn: devops
        group_access: maintainer
      app_devs_are_developers: # this is just a label
        provider: AD
        filter: "(employeeType=developer)"
        group_access: developer
      enforce: true # optional