How to fetch all the groups for a user from Active Directory

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: varun mittal <vmittal05 [at] gmail.com>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: How to fetch all the groups for a user from Active Directory
Date: Wed, 9 Dec 2020 20:36:34 +0530

I am using 'nss-pam-ldapd-0.9.8-1' on CentOS 7.2 and have been struggling to find the correct nslcd.conf configuration to fetch all the groups for an Active Directory user.

I tried "nss_nested_groups yes" option too, but the nested group memberships via the 'Primary Group' are still left out.

Eg.

username: test_user

Primary Group: 'Domain Users'

Secondary Group: 'FirstLevelGroup'

The 'Domain Users' group is a member of another group, say X. Similarly 'FirstLevelGroup' is also a member of another group, say Y

'id test_user' returns 'Domain Users', 'FirstLevelGroup', 'Y'

The group 'X' is left out.

If I change the Primary Group to point to 'FirstLevelGroup', then group 'X' is included but 'Y' is left out.

How to fetch all the groups for a user from Active Directory, varun mittal

Prev by Date: Re: Compatibility between nslcd and samba running as LDAP AD/DC server: services migration
Previous by thread: Re: Compatibility between nslcd and samba running as LDAP AD/DC server: services migration