We use LDAP to allow our users into our Guacamole application. Now, we are allowing 1 or 2 users to be administrators on the system, so we check the "Administer the System" checkbox in their user profile. The next time that this person logs in, and goes to the Users section under Settings, they can see ALL of the LDAP users.
So, we made a group on our LDAP server and added a few users to it, then changed the ldap-group-base-dn to (what we thought) filter the scope to only be members of the group, as follows: ldap-group-base-dn:cn=sdsusers,cn=groups,cn=accounts,dc=example,dc=com However, after restarting everything, the user can still see ALL users in the LDAP. So how can we filter it down to only show the users in the sdsusers group that we have in our LDAP? Thanks, Harry Harry Devine DOT/FAA/AJM-2412 Common ARTS Software Development Terminal Server (NASDAC) Adminstrator Red Hat Certfied System Adminstrator (RHCSA) harry.dev...@faa.gov<mailto:harry.dev...@faa.gov> (609)485-4218 Building 300, 3rd Floor, Column L20 (3L20)