[Samba] PFsense via Samba Authentication Server -> ERROR! ldap_get_groups() could not bind
Rowland penny
rpenny at samba.org
Thu Sep 17 08:29:07 UTC 2020
On 17/09/2020 08:50, Marco Gaiarin via samba wrote:
> Mandi! Rowland penny via samba
> In chel di` si favelave...
>
>> For example if the user 'rowland' was searched for using this LDAP filter "(&(objectCategory=person)(objectClass=user)(sAMAccountName=rowland)(memberOf='GROUPS_DN'))"
>> The user would only be found if it was a member of the required group
> For a sake of completeness, you can also do:
>
> "(&(objectCategory=person)(objectClass=user)(sAMAccountName=rowland)(memberOf:1.2.840.113556.1.4.1941:='GROUPS_DN'))"
>
> eg, use 'LDAP_MATCHING_RULE_IN_CHAIN' modifier, and query also nested
> groups membership.
>
Well yes, you could do that, but I was just trying to point out that
when the OP was using an OU in in his 'memberof' search, it wasn't
likely to work :-)
Rowland
More information about the samba
mailing list