filter to deny access based on group membership

Toggle sidebar Toggle sidebar
J

jaime

Distinguished
Apr 8, 2004
29
0
18,530
Archived from groups: microsoft.public.win2000.active_directory (More info?)

I'm using the mod_auth_ldap with apache to attempt to block access to a
directory based on group membership. I've successfully bound to the
active directory server and authenticated with my user id but I cannot
seem to get the filter right to find the group memberships by id. I
have no idea what the syntax should be. Here is what I have:

require filter "(&(groupmembership=ABC*))"

Can this be done? How do I find out if they are a member of a group if
there are many groups listed?
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

The Attribute name is MemberOf ... but this will return an array of all the
groups a user is member of ... so you may need to iterate through the array
to check if the group is there

Hope it helps,
Pablo E. Colazurdo

"jaime" <jaime_warren@fpl.com> wrote in message
news:1103319997.277448.94960@z14g2000cwz.googlegroups.com...
> I'm using the mod_auth_ldap with apache to attempt to block access to a
> directory based on group membership. I've successfully bound to the
> active directory server and authenticated with my user id but I cannot
> seem to get the filter right to find the group memberships by id. I
> have no idea what the syntax should be. Here is what I have:
>
> require filter "(&(groupmembership=ABC*))"
>
> Can this be done? How do I find out if they are a member of a group if
> there are many groups listed?
>
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom