[xwiki-users] Fwd: Restrict sub wikis with respect to LDAP Groups

Does anyone knows why user is gets created with our any group. ? ---------- Forwarded message ---------- From: Geo P.C. <pcgeopc(a)gmail.com> Date: Wed, Jul 10, 2013 at 7:34 PM Subject: Restrict sub wikis with respect to LDAP Groups To: XWiki Users <users(a)xwiki.org> Currenlty we have a main wiki that integrated with LDAP having many groups. We also have many sub wikis and we need to access these from certain ldap groups only. For this we done the following: - Modified xwiki.users.initialGroups= to empty and deleted XWikiAllGroup from all wikis. - In main wiki created groups with same name as LDAP groups(for eg: OperationsInfrastructure). Mapped groups in xwiki.authentication.ldap.group_mapping. - Now in respective sub wiki in rights for groups took scope as global and for the respective group we assigned all permission. - We tried login to sub wikis and the result are as follows: 1. For some wiki its works fine. In which user is added to respective group. 2. For remaining wikis its not working properly. We are getting an error as "You are not allowed to view this document or perform this action." While checking in these sub wikis user is gets created but its not in any group. Thats why it doesn't have any permission. Please let us whats the issue is and the procedure done from my side is correct or not. Also please let us know whats the best method to restrict wiki(Also spaces) with respect to LDAP groups. Can anyone please help us on it. Thanks Geo* *