OPNsense Forum

English Forums => General Discussion => Topic started by: lox on May 28, 2019, 12:27:02 pm

Title: Ldap not returning all users
Post by: lox on May 28, 2019, 12:27:02 pm

I configured LDAP but I need to get only users of a single group 'VPN'. I need to import them to generate their own certificate for OpenVPN.

I tried it with Apache Ldap Directory without any exotic configuration, and I get my three users. I use this search pattern:

Code: [Select]

&(memberof=CN=VPN,CN=Groups,DC=office,DC=domain,DC=local )
When I try to import the users, only one user shows up. If I remove the search pattern I can see all the LDAP users but some are missing.

I can successfully use the missing users in the "Tester"

Title: Re: Ldap returning only one user
Post by: hbc on May 28, 2019, 12:32:24 pm

Why not just:

Code: [Select]

(cn=foobar)as filter, where foobar is the username?

Title: Re: Ldap returning only one user
Post by: lox on May 28, 2019, 12:51:43 pm

I get an empty list even using the usename of the single user returned with the group filter

Title: Re: Ldap returning only one user
Post by: lox on May 28, 2019, 02:10:11 pm

I was wrong the users missing with the group filter are also missing without a filter. But I can successfully use the missing users credentials in the "Tester" (post edited to reflect that)