hi
this is my ldap config , i want to authenticate users through ldap and the authorized group is cms-zh , and i have defined a role cms-zh in schema as well.
searchguard.authentication.authentication_backend.impl: com.floragunn.searchguard.authentication.backend.ldap.LDAPAuthenticationBackend
searchguard.authentication.authorizer.impl: com.floragunn.searchguard.authorization.ldap.LDAPAuthorizator
searchguard.authentication.http_authenticator.impl: com.floragunn.searchguard.authentication.http.basic.HTTPBasicAuthenticator
searchguard.authentication.ldap.host: [“xldap.cern.ch”]
#searchguard.authentication.ldap.bind_dn: null
#searchguard.authentication.ldap.password: null
searchguard.authentication.ldap.userbase: “OU=Users,OU=Organic Units,DC=cern,DC=ch”
searchguard.authentication.ldap.usersearch: (sAMAccountName={0})
searchguard.authentication.ldap.username_attribute: uid
searchguard.authentication.authorization.ldap.rolebase: “OU=Unix,OU=Workgroups,DC=cern,DC=ch”
searchguard.authentication.authorization.ldap.rolesearch: (&(objectClass=group)(cn=cms-zh))(member={0}))
searchguard.authentication.authorization.ldap.userroleattribute: null
searchguard.authentication.authorization.ldap.rolename: cn
so when i try to curl using a user in cms-zh group , the authentication went good but there is some ldap authroization error. ldperr internal error 500 , can anyone help? do i need to change something above in authroization section? thanks