OpenLDAP auth and group membership

  • Greetings,

    I googled about but could not find anything but openldap+squid/whatever or AD+webgui/ssh. I am trying to auth the webgui and vpn against an OpenLDAP server and it works fine, but cannot find any groups for the user. I dont have memberOf attribute on the user object, which seem to be the base for the search. On my ldap server I get this:

    Dec  5 13:13:15 venus slapd[1813]: conn=2455 op=1 SRCH base="uid=user,ou=People,dc=foo" scope=2 deref=0 filter="(uid=user)"
    Dec  5 13:13:15 venus slapd[1813]: conn=2455 op=1 SRCH attr=memberuid=%s
    Dec  5 13:13:15 venus slapd[1813]: conn=2455 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=

    "memberUid" is the attribute on my ou=Group where it should look for the user on memberUid attribute of the group object. I have set "dc=foo" as base dn with subtree scope and ou=People,dc=foo as auth container. Can someone help me?

    Thanks and best regards.

  • Hello,

    I have the same issue. No way to get user inside a group.

    I use "ou" as "Group member attribute". When I try to authenticate a user via "Diagnositcs/Authentication" the user never get inside the local group.

    I checked LDAP request, and when it's asking for result from "ou", my LDAP is giving the good group name, of course the local group is the same.

    Any idea ?

    Paco Medina

Log in to reply