Trying to configure the ldap authentication, but since I do not have the memberOf overlay enabled on my LDAP server I need to configure the following lines in the ldap.toml file:
group_search_filter = “(&(objectClass=GroupofNames)(member=uid=%s,ou=,dc=,dc=))”
group_search_base_dns = [“ou=,ou=,dc=,dc=”]
The problem seems to be that the “%s” is not substituted in the group_search_filter so the search that is passed to the LDAP server is missing the username. If I remove the “%s” and just put a username in then the LDAP authentication works for that user and puts them in the correct group.
Any advise appreciated