To continue the solution to the access control by group membership:

The LDAP ID and AUTH providers are being used against eDirectory so a little bit of schema mapping is required first (as indicated in the previous post):

ldap_schema = rfc2307bis
ldap_user_name = cn
ldap_user_member_of = groupMembership
ldap_group_name = cn

Then to perform access control by group membership:

access_provider = ldap
ldap_access_filter = groupMembership=cn=<GROUP_CN_NAME>,ou=LDAP,ou=SVS, o=DVC

The context is an example, obviously.

I hope it helps,


-- lawrence