https://bugs.openldap.org/show_bug.cgi?id=9402
Issue ID: 9402
Summary: Add support for LDAP_MATCHING_RULE_IN_CHAIN
(1.2.840.113556.1.4.1941)
Product: OpenLDAP
Version: 2.4.56
Hardware: All
OS: All
Status: UNCONFIRMED
Severity: normal
Priority: ---
Component: overlays
Assignee: [email protected]
Reporter: [email protected]
Target Milestone: ---
Hi,
The memberof overlay add support for memberOf attributes. But, when using
nested groups, user group membership must be handled on each ldap client. The
current implementation allows one to only retrieve direct group ownership.
Nested group membership must be done by client recursive lookup.
Microsoft Active Directory provides a way to do the recursive lookup at
server side: https://ldapwiki.com/wiki/LDAP_MATCHING_RULE_IN_CHAIN
It would be really useful if openldap (slapd) was also able to do the same.
Regards,
Vincent
PS: I set the component to overlays in this bugs report, but I'm not sure it
should be implemented into the overlays memberof itself.
--
You are receiving this mail because:
You are on the CC list for the issue.
