Thank you! That was the hint i needed. I now created a binduser and its
working with the group.

On 22.05.2017 16:46, Alexander Bokovoy wrote:
> On ma, 22 touko 2017, Sebastian Kösters wrote:
>> so, like this?
>>
>> AuthBasicProvider ldap
>> AuthLDAPURL "ldaps://ipa01.hostname.de:636
>> ipa02.hostname.de:636/cn=users,cn=accounts,dc=domain,dc=de?member"
>> require ldap-group webtest
>>
>> does not work for me?
> You should be able to see it if you are authenticated. If your Apache
> setup does not include bind DN information, you are using anonymous bind
> and this one is denied access to membership information by FreeIPA 4.x.
> 
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org

Reply via email to