Hi there,
Currently trying out setting up the LDAP User/Group Service, and given that the documentation is a little sparse, would really like to get this working so I can then add to the docs a bit.
I’ve correctly configured the User lookup and the Group lookup, so we have both of those working fine. It’s just the mapping between that I can’t seem to get working, would be very grateful for any advice?
Group has a member attribute which is the DN for the user.
It’s not immediately clear whether this evaulation is performed group→user or user→group and I can’t see that in the documentation.
I’ve tried all of the below permutations for both directions, we are using Microsoft AD
User→Group
(&(objectClass=group)(member={0}))
(&(objectClass=group)(member={1}))
member={0}
member={1}
Group→User
(&(objectClass=user)(memberOf={0}))
(&(objectClass=user)(memberOf={1}))
group={0}
group={1}
member
memberOf
Would be incredibly grateful for any insight! Thanks in advance