Unable to get memberOf (OpenLDAP, using memberof overlay)
Stevens, M
michael.stevens at boku.com
Tue Dec 10 17:56:44 EST 2019
Querying with ldapsearch, I get group membership information using "\* \+",
"\* memberof", etc., the ldap server clearly considers memberOf to be an
operational attribute, I get it back when filtering only on "+"
>From attribute-resolver.xml:
<ReturnAttributes>* +</ReturnAttributes>
<FilterTemplate>
</FilterTemplate>
I've tried about every combination possible. The logs clearly show "+"
returning operational attributes ... just not memberOf.
I have idp.attribute.resolver.LDAP.searchFilter set to
uid=$resolutionContext.principal. Everything I've found suggests I /should/
be getting memberOf back with the operational attributes.
--
Sent from: https://shibboleth.1660669.n2.nabble.com/Shibboleth-Users-f1660767.html
More information about the users
mailing list