pfSense

Hello,
Seems there is still a bug with the RFC2307 standard in 2.3.2's ldap config.

I setup the LDAP configuration and it doesn't accept to search within the group with the memberUid on one of my firewalls running 2.3.2.

Here is what I see on my ldap server after i test ldap with the initial config in the attached picture.

conn=3804 op=2 SRCH base="cn=groups,cn=compat,dc=grenadine,dc=juicy" scope=2 filter="(&(uid=dave)(cn=grenadineadmins))" attrs=ALL
I tried variants but it always adds the uid instead of the memberUid.
SRCH base="cn=groups,cn=compat,dc=grenadine,dc=juicy" scope=2 filter="(&(uid=dave)(&(objectClass=posixGroup)(cn=grenadineadmins*)))" attrs=ALL

When i go back to the config,and remove the extended query, here is the query that is successfull.

conn=3809 op=1 SRCH base="cn=users,cn=accounts,dc=grenadine,dc=juicy" scope=2 filter="(uid=dave)" attrs=ALL

I wish pfsense's query would look more like so... This is the query Graylog does. I have attached it's query.
conn=4405 op=1 SRCH base="cn=users,cn=accounts,dc=grenadine,dc=juicy" scope=2 filter="(&(objectClass=inetOrgPerson)(uid=dave))" attrs="cn * distinguishedName uid userprincipalname mail mail memberOf ismemberof aci"

Seems pfsense doesn't use the RFC2307 checkbox.