---

Subject:	Question
Author:	[Not Specified]
Posted:	2014-01-09 08:09

It wouldn't hurt to verify that you are using the correct DN for the userbase you want.

The easiest way is to enable the advanced view in AD and go to the properties of the OU where the users live, and then copy/paste the DN from there.

Hydruid

---

Subject:	I did that, the above DN is
Author:	[Not Specified]
Posted:	2014-01-09 12:10

I did that, the above DN is what I got from that. I must not be using the filter properly.

---

Subject:	Question
Author:	[Not Specified]
Posted:	2014-01-09 13:07

Is the DN you specified where the users are located at or does it reference a security group

Hydruid

---

Subject:	references security group.
Author:	[Not Specified]
Posted:	2014-01-10 10:42

references security group. should I be using memberOf

---

Subject:	Answer
Author:	[Not Specified]
Posted:	2014-01-10 11:00

I'm not 100% sure but probably so, just referencing the DN usually only works for users listed in an OU, not a security group.

Let me know if memberOf works!

Hydruid

---

Subject:	:(
Author:	[Not Specified]
Posted:	2014-01-13 09:11

It didn't work, that should have worked.

Users Base DN: cn=Users,dc=DOMAIN,dc=com

Group Storage: Groups stored on LDAP server

Groups Base DN: cn=Users,dc=DOMAIN,dc=com

User object classes: top,person

Additional user search filter:memberOf=CN=ZenossAdmins,CN=Users,DC=DOMAIN,DC=com

---

Subject:	When I search for my use in
Author:	[Not Specified]
Posted:	2014-01-13 14:20

When I search for my use in AD from within zope management, it finds the account and lists all the groups that the account belongs to. Maybe the "user search filter" doesn't work with groups

under the memberOf field after finding my account in zope, I copied the full DN that it had in there and used that as my search criteria and it still didn't work. Is there another place to limit authentication