LDAP wrong query

Glaring

So, I think I've found a bit of an issue in the LDAP integration.

More specifically:
The query sent to the LDAP when searching for a specific user that is member of a group is wrong

When the LDAP connection is configured to not include the specific group I'd like to sort on, the LDAP does the following:
SEE FIRST LOG ENTRY
As you can see the result seems to spit out the correct user and authentication works.

Now, If I specify a group in the authentication container, the LDAP does the following:
SEE SECOND LOG ENTRY
As you can see the filter seems wrong and it also seems to search for the user in the wrong place.

I tried to include the logs as code blocks, however it was flagged as spam so I had to do it this way:
LogsLDAP.txt

stephenw10

What do you expect to see there?

Glaring

I just reviewed the logs, and saw I didn't post the complete log, resulting in your question. Sorry for this inconvenience.

Included are the correct logs, I'd expect the last line of the second log to have a correct filter at the LDAP query. I don't know why it doesn't include the location of where to find the users.
LogsLDAP.txt

stephenw10

Ah, OK. How have you configured that in the GUI?

Glaring

@stephenw10

stephenw10

Hmm I expect that to be entered in the extended query options if you need it:
https://docs.netgate.com/pfsense/en/latest/usermanager/ldap.html?highlight=extended query