[Samba] PFsense via Samba Authentication Server -> ERROR! ldap_get_groups() could not bind

Rowland penny rpenny at samba.org
Thu Sep 17 08:29:07 UTC 2020

On 17/09/2020 08:50, Marco Gaiarin via samba wrote:
> Mandi! Rowland penny via samba
>    In chel di` si favelave...
>> For example if the user 'rowland' was searched for using this LDAP filter "(&(objectCategory=person)(objectClass=user)(sAMAccountName=rowland)(memberOf='GROUPS_DN'))"
>> The user would only be found if it was a member of the required group
> For a sake of completeness, you can also do:
> 	"(&(objectCategory=person)(objectClass=user)(sAMAccountName=rowland)(memberOf:1.2.840.113556.1.4.1941:='GROUPS_DN'))"
> eg, use 'LDAP_MATCHING_RULE_IN_CHAIN' modifier, and query also nested
> groups membership.
Well yes, you could do that, but I was just trying to point out that 
when the OP was using an OU in in his 'memberof' search, it wasn't 
likely to work :-)


More information about the samba mailing list