I tried a number of possibilities for the ldap url based on the LDAP URL section and I'm guessing that pg 8.2 doesn't support the ?scope variable. According to the documentation it is supported in 9.0 but not in the same format as the RFC documentation in the link you sent me.
Thanks Sim
> Date: Wed, 23 Feb 2011 12:43:45 +0200 > From: sim@compulab.co.il > To: pgsql-general@postgresql.org > Subject: [GENERAL] ldap authentication multiple ou objects > > Is there a way to do ldap authentication in pg_hba on a structure that > has multiple ou objects? > > Lets say I have an ou=Users and then an ou per dept. > > I want the ldap to do authentication no matter which ou the user is in. > > > My current ldap string is: > > ldap://ldap.server.local/Users;uid=;,ou=Users,dc=server,dc=local > > and it works if the user is only in the ou=Users but if he is in any sub > ou it gives authentication failed. > > > Thanks > > SIm > > > -- > Sent via pgsql-general mailing list (pgsql-general@postgresql.org) > To make changes to your subscription: > http://www.postgresql.org/mailpref/pgsql-general
