Ok, as far as i could learn, group membership is determined via the memberOf overlay: connection.search(searchBase,filter, SearchScope.SUBTREE,groupIdAttribute, displayNameAttribute, "dn", "uid", "userPrincipalName", "mail", "rfc822Mailbox", "memberOf");
So people like us, running a SUN Directory Service(where this is called "ismemberOf"...), are out of Luck. Any ideas/plans to make this a configurable Option? regards Serge Am Montag, 9. November 2015 17:00:15 UTC+1 schrieb [email protected]: > > Hi, > i'm running Graylog 1.2.2 from official debian packages. > I've setup LDAP authentication successfully, Also all our groups are > displayed in Section "Group Mappings. > But whenever i login with a user, he gets the default Role assigned. > And wenn i do a "Login Test" i see all my users attributes, but the List > "LDAP > Groups of the user" > is empty. > A tcpdump of the ldap query shows the binding,succesfull user lookup and > authentication, and a full group query, but still, no groups listed for the > user. > I'm quite at a loss right now, > any ideas what i'm missing? > How does graylog match the user to groups? > > best regards > Serge > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/9c418803-2864-45cf-9aa2-049f53b190ae%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
