[Issue 9402] New: Add support for LDAP_MATCHING_RULE_IN_CHAIN (1.2.840.113556.1.4.1941)

21 Nov 2020


      https://bugs.openldap.org/show_bug.cgi?id=9402
Issue ID: 9402
           Summary: Add support for LDAP_MATCHING_RULE_IN_CHAIN
                    (1.2.840.113556.1.4.1941)
           Product: OpenLDAP
           Version: 2.4.56
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Severity: normal
          Priority: ---
         Component: overlays
          Assignee: bugs@openldap.org
          Reporter: vdanjean.ml@free.fr
  Target Milestone: ---
Hi,
The memberof overlay add support for memberOf attributes. But, when using
nested groups, user group membership must be handled on each ldap client. The
current implementation allows one to only retrieve direct group ownership.
Nested group membership must be done by client recursive lookup.
Microsoft Active Directory provides a way to do the recursive lookup at
server side: https://ldapwiki.com/wiki/LDAP_MATCHING_RULE_IN_CHAIN
  It would be really useful if openldap (slapd) was also able to do the same.
Regards,
    Vincent
PS: I set the component to overlays in this bugs report, but I'm not sure it
should be implemented into the overlays memberof itself.
-- 
You are receiving this mail because:
You are on the CC list for the issue.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[Issue 9402] New: Add support for LDAP_MATCHING_RULE_IN_CHAIN (1.2.840.113556.1.4.1941)