openldap memberOf not showing user in groupOpenLDAP memberOf overlay - changing memberOf attribute nameOpenLDAP memberOf attribute is not updated after group updateOpenLDAP tree with groups?OpenLDAP user group membership integrityNot able to add memberOf overlay openldap 2.3.9OpenLDAP Filtering Users that are part of Groups of GroupsHow to return the user DN where it's UID is in a specific groupOpenLdap Configuration IssueOpenLDAP with two distinct ActiveDirectory “backends”OpenLDAP 2.4.44 Authentication on CentOS/RHEL 7
Accidentals and ties
If you snatch, I trade
Should my manager be aware of the proposals I receive? How to politely have this happen?
Fedora boot screen shows both Fedora logo and Lenovo logo. Why and How?
Trainee keeps missing deadlines for independent learning
How does metta sutra develop loving kindness
Can White Castle?
Can we get mode of lightning component if its open in App Builder?
Can Ogre clerics use Purify Food and Drink on humanoid characters?
Why do some professors with PhDs leave their professorships to teach high school?
Swapping rooks in a 4x4 board
How does a blind passenger not die, if driver becomes unconscious
Why the feminine "la" in "à la Leonardo DiCaprio", though he is a man?
How does a monk's Martial Arts feature modify damage done by magical monk weapons?
Java TreeMap.floorKey() equivalent for std::map
How long would it take to cross the Channel in 1890's?
Is it illegal to withhold someone's passport and green card in California?
Does this Wild Magic result affect the sorcerer or just other creatures?
Why do all the teams that I have worked with always finish a sprint without completion of all the stories?
expiry or manufactured date?
How dangerous are set-size assumptions?
How to create a Tetrix/Sierpinski Tetrahedron fractal radiating from 0,0,0 ? Python or nodes
3D Crossword, Cryptic, Statue View & Maze
How to make clear to people I don't want to answer their "Where are you from?" question?
openldap memberOf not showing user in group
OpenLDAP memberOf overlay - changing memberOf attribute nameOpenLDAP memberOf attribute is not updated after group updateOpenLDAP tree with groups?OpenLDAP user group membership integrityNot able to add memberOf overlay openldap 2.3.9OpenLDAP Filtering Users that are part of Groups of GroupsHow to return the user DN where it's UID is in a specific groupOpenLdap Configuration IssueOpenLDAP with two distinct ActiveDirectory “backends”OpenLDAP 2.4.44 Authentication on CentOS/RHEL 7
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;
When I do an ldapsearch for a newly created user and ask for its goup membership the query does not return the expected answer even though this user exists in a group.
For example :
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXX' -b 'uid=cberch,ou=people,dc=xxx,dc='yyy' memberOf
I get:
# cberch, people, xxx.yyy
dn: uid=cberch,ou=people,dc=xxx,dc=yyy
And that's it, then I try:
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXXX'-b 'cn=members_staff,ou=group,dc=xxx,dc=yyy' |grep cberch
I can find my user:
member: uid=cberchiche,ou=people,dc=xxx,dc=yyy
I noticed that hours later the "memberOf" query returns the user and its group.
Is there some caching mechanism in openldap ? Is it possible to force the reload manually ?
Thanks in advance for your help.
Vince
cache openldap
asked Jun 6 at 15:22
vincentrvincentr
1
add a comment |
When I do an ldapsearch for a newly created user and ask for its goup membership the query does not return the expected answer even though this user exists in a group.
For example :
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXX' -b 'uid=cberch,ou=people,dc=xxx,dc='yyy' memberOf
I get:
# cberch, people, xxx.yyy
dn: uid=cberch,ou=people,dc=xxx,dc=yyy
And that's it, then I try:
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXXX'-b 'cn=members_staff,ou=group,dc=xxx,dc=yyy' |grep cberch
I can find my user:
member: uid=cberchiche,ou=people,dc=xxx,dc=yyy
I noticed that hours later the "memberOf" query returns the user and its group.
Is there some caching mechanism in openldap ? Is it possible to force the reload manually ?
Thanks in advance for your help.
Vince
cache openldap
asked Jun 6 at 15:22
vincentrvincentr
1
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46
add a comment |
When I do an ldapsearch for a newly created user and ask for its goup membership the query does not return the expected answer even though this user exists in a group.
For example :
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXX' -b 'uid=cberch,ou=people,dc=xxx,dc='yyy' memberOf
I get:
# cberch, people, xxx.yyy
dn: uid=cberch,ou=people,dc=xxx,dc=yyy
And that's it, then I try:
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXXX'-b 'cn=members_staff,ou=group,dc=xxx,dc=yyy' |grep cberch
I can find my user:
member: uid=cberchiche,ou=people,dc=xxx,dc=yyy
I noticed that hours later the "memberOf" query returns the user and its group.
Is there some caching mechanism in openldap ? Is it possible to force the reload manually ?
Thanks in advance for your help.
Vince
cache openldap
asked Jun 6 at 15:22
vincentrvincentr
1
When I do an ldapsearch for a newly created user and ask for its goup membership the query does not return the expected answer even though this user exists in a group.
For example :
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXX' -b 'uid=cberch,ou=people,dc=xxx,dc='yyy' memberOf
I get:
# cberch, people, xxx.yyy
dn: uid=cberch,ou=people,dc=xxx,dc=yyy
And that's it, then I try:
# ldapsearch -x -D "cn=Admin,dc=xxx,dc=yyy" -w'XXXXXXX'-b 'cn=members_staff,ou=group,dc=xxx,dc=yyy' |grep cberch
I can find my user:
member: uid=cberchiche,ou=people,dc=xxx,dc=yyy
I noticed that hours later the "memberOf" query returns the user and its group.
Is there some caching mechanism in openldap ? Is it possible to force the reload manually ?
Thanks in advance for your help.
Vince
cache openldap
cache openldap
asked Jun 6 at 15:22
vincentrvincentr
1
asked Jun 6 at 15:22
vincentrvincentr
1
asked Jun 6 at 15:22
vincentrvincentr
1
asked Jun 6 at 15:22
vincentrvincentr
1
asked Jun 6 at 15:22
vincentrvincentr
1
1
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46
add a comment |
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f970397%2fopenldap-memberof-not-showing-user-in-group%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f970397%2fopenldap-memberof-not-showing-user-in-group%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
How is your memberof overlay configured?
– 84104
Jun 6 at 18:35
Hi !# slapcat -n 0 | grep olcModuleLoad olcModuleLoad: 0memberof.la olcModuleLoad: 0refint.la olcModuleLoad: 0ppolicy.la
– vincentr
Jun 7 at 6:48
Better to edit information into your question than to have it be a comment. Also, this only seems to show that you've loaded the module, not that you've configured it.
– 84104
Jun 7 at 18:46