LDAP Group parameter mapping.. what does it mean?
When LDAP is configured as a data source in GRC 10, the group parameter mapping must be configured.
For instance, the group parameter "User: OC" has a value of "person".
What does it mean?
It means that the search for LDAP records will only bring back to the application those entries for which the "objectClass" is "person".
In other words, the entries are for users. The same can be configured to bring back only roles, maintaining the group parameter "Roles: OC" with a value of "group"