Actions
Bug #16029
open
When using LDAP group filter, group has to be in the same LDAP container as the user
Status:
Pull Request Review
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Default
Affected Version:
2.7.2
Affected Architecture:
Description
We are using OpenLDAP that we want to use for the OpenVPN authentication.
Idea is to allow only those users that are part of one specific group.
Groups and users are within separate LDAP tree. Users in ou=users,dc=test,dc=com and groups in ou=groups,dc=test,dc=com.
When configuring it this way in PFsense, we have found out that as there are separate searches for each container, the same is used also for group search.
Because of that the only way to make it work is to create group within the same tree/container as the user that is being logged in.
Updated by
Actions