Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Using LDAP objectclass "groupofnames" with "member" to determinate the group of a user

    Scheduled Pinned Locked Moved
    General pfSense Questions
    2
    3
    422
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kaufi88
      last edited by

      Hi there,
      in our LDAP-System we have to discover the group membership where members are listed to determine in which group a user is.
      So far so good. But we use "groupofnames" and not "posixGroup" as a objectclass.
      For this reason, the members in the group are listed with the FQDN and not with the uid.

      Does anyone know, how to handle this issue?

      I found in the bug tracker this issue: https://redmine.pfsense.org/issues/5461, but there are no more actions since years..

      Cheers,
      Daniel

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        I assume you' ve tried with and without the setting checked for?:

        LDAP Server uses RFC 2307 style group membership:
        RFC 2307 style group membership has members listed on the group object rather than using groups listed on user object. Leave unchecked for Active Directory style group membership (RFC 2307bis).

        Steve

        1 Reply Last reply Reply Quote 0
        • K
          kaufi88
          last edited by

          Sure... without success :(

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.