On Fri, Nov 11, 2011 at 12:02:31PM +0530, Nitesh Mehare wrote:
# data about the user itself. If you do not know this value, ask
an
# administrator.
A [domain/LDAP]
A debug_level = 9
A id_provider = ldap
A auth_provider = ldap
A ldap_schema = rfc2307
A access_provider = ldap
A ldap_access_filter = memberOf=cn=idsldap,ou=People,o=sample
A ldap_uri =
ldap://lbullet.in.ibm.com
A ldap_search_base = ou=People,o=sample
A ldap_tls_reqcert = never
A cache_credentials = false
A enumerate = False
How are group membership links determined in your directory?
If you're using member/memberof pairs as your ldap_access_filter
suggests, you should probably use "ldap_schema = rfc2307bis".
The configuration specifies "schema=rfc2307" which implies
"memberuid" attributes with username values.
Also, the search base points to "ou=People" container, is it really
where the groups are stored as well?