Thank you! That was the hint i needed. I now created a binduser and its working with the group.
On 22.05.2017 16:46, Alexander Bokovoy wrote: > On ma, 22 touko 2017, Sebastian Kösters wrote: >> so, like this? >> >> AuthBasicProvider ldap >> AuthLDAPURL "ldaps://ipa01.hostname.de:636 >> ipa02.hostname.de:636/cn=users,cn=accounts,dc=domain,dc=de?member" >> require ldap-group webtest >> >> does not work for me? > You should be able to see it if you are authenticated. If your Apache > setup does not include bind DN information, you are using anonymous bind > and this one is denied access to membership information by FreeIPA 4.x. > _______________________________________________ FreeIPA-users mailing list -- email@example.com To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org