Enable group sync for LDAP servers, that do not return memberOf (#5082)

2026-03-13 16:14:40 +00:00 · 2021-07-08 13:09:27 +02:00 · 2021-07-08 13:09:27 +02:00 · 78c8be71d1
commit 78c8be71d1
parent b74b3799db
1 changed files with 1 additions and 1 deletions
--- a/src/opnsense/mvc/app/library/OPNsense/Auth/LDAP.php
+++ b/src/opnsense/mvc/app/library/OPNsense/Auth/LDAP.php
@ -578,7 +578,7 @@ class LDAP extends Base implements IAuthConnector
        if ($ldap_is_connected) {
            $this->lastAuthProperties['dn'] = $user_dn;
            if ($this->ldapReadProperties) {
-                $sr = @ldap_read($this->ldapHandle, $user_dn, '(objectclass=*)');
+                $sr = @ldap_read($this->ldapHandle, $user_dn, '(objectclass=*)', ['*', 'memberOf']);
                $info = @ldap_get_entries($this->ldapHandle, $sr);
                if ($info['count'] != 0) {
                    foreach ($info[0] as $ldap_key => $ldap_value) {