Restricting Access to a Group in OpenLDAP

Rory_Walsh · October 11, 2006, 9:08am

Hi,

I’‘m running Wildfire 3.0.1 using OpenLDAP as my user storage. I’‘m trying to restrict access to a specific group, called Jabber. I’‘ve seen a couple of posts relating to this (mostly using AD) but I can’'t get it to work using OpenLDAP. Can you suggest a search filter (or otherwise) to get this to work?

The following is an excerpt from my wildfire.xml:

The following is an excerpt from my LDAP database:

Jabber, Groups, example.org

dn: cn=Jabber,ou=Groups,dc=example,dc=org

cn: Jabber

objectClass: posixGroup

objectClass: top

gidNumber: 110

memberUid: user1

memberUid: user2

user1, Users, example.org

dn: uid=user1,ou=Users,dc=example,dc=org

uid: user1

loginShell: /bin/bash

homeDirectory: /home/user1

gidNumber: 100

uidNumber: 545

displayName: User One

objectClass: inetOrgPerson

objectClass: posixAccount

Cameron_Moore · October 12, 2006, 5:13pm

Are you sure that you have your LDAP providers enabled? Your config should look something like this:

Rory_Walsh · October 13, 2006, 8:41am

Yes I have that in the provider section:

Just to clarify, it does list my users and groups from LDAP, but it returns all my users. I would like to restrict it to a specific group which has a list of users in it.

Thanks