https://community.cloudera.com/t5/Support-Questions/How-to-configure-groups-and-roles-mapping-using-ldapRealm-in/m-p/226495#M188355 <P>Hi Predrag,<BR />We face with the same issues and somehow we can't get it working.<BR />Do you have any idea where we go wrong?<BR />Thanks,<BR />Andras<BR /></P><PRE>ldapRealm = org.apache.zeppelin.realm.LdapRealm ldapRealm.contextFactory.systemUsername = aduser@domain.local ldapRealm.hadoopSecurityCredentialPath = jceks://file/user/zeppelin/conf/zeppelinldap.jceks ldapRealm.searchBase = "OU=User Accounts,DC=domain,DC=local" ldapRealm.userSearchBase = "OU=User Accounts,DC=domain,DC=local" ldapRealm.groupSearchBase = "OU=User Accounts,DC=domain,DC=local" ldapRealm.groupObjectClass = group ldapRealm.memberAttribute = member ldapRealm.groupIdAttribute = cn ldapRealm.groupSearchEnableMatchingRuleInChain = true ldapRealm.rolesByGroup = users: admin ldapRealm.userSearchFilter = (&amp;(objectclass=user)(sAMAccountName={0})(memberOf=CN=users,OU=User Accounts,DC=domain,DC=local)) ldapRealm.contextFactory.url = ldap://AD.domain.local:389 </PRE> Tue, 10 Jul 2018 22:19:50 GMT andras1234 2018-07-10T22:19:50Z