For our project we currently have SAML set up to create users based on a single AD group.
We want any users belonging to a handful of AD groups to be added to various Appian business groups.
I decided to make a pm to add or remove group members, but don't have a way to query AD.
We cant seem to find a way to query AD aside from using LDAP(my understanding is SAML cant be used with LDAP).
Is there way to query AD with LDAP without fully committing to using LDAP in the Appian Admin console?
Something like an integration/webapi to query AD with LDAP without fully commiting to using LDAP from the admin console.
Discussion posts and replies are publicly visible
Take a look at LDAP Tools. I'm pretty sure the ldapSearch function can help you with what you need.
ldapSearch
I looked over that when creating my pm for syncing groups.
My (maybe incorrect) understanding is I can not use this app unless I have set up ldap in the admin console. (instead of saml)
Is this correct or is ldap tools separate?
The LDAP tools plugin is separate - we use SAML authentication and also utilize this plugin for ldapsearch() as noted above, to verify user AD group associations. So yes, you can have both (without enabling LDAP in /admin).
You may try using this solution: https://bit.ly/2ZLVqP0. It fetches the data from all directories that support the LDAP protocol and displays the relevant data in a web interface.