Support nested groups in ldap
|Category:||Drivers - Auth|
Currently the ldap driver does not support groups withing groups.
#1 Updated by Strahinja Kustudic almost 4 years ago
Besides supporting nested groups in LDAP, which should probably be a setting like:
It would probably be better to replace the
group option with something like
ldap_access_filter (check the sssd.conf man page), where you can write any LDAP filter which needs to be matched for a user to allow the user to login. This will give more flexibility on who to allow to login, then just setting a single group.