11.08.2011, 21:04, "Manochehri, Tim" <Tim.Manochehri@xxxxxxxxxxxxxxxx>: > Here are the LDAP_options section: > > $LDAP_options = array > ( > 'server' => 'abc.acme.com', > 'domain' => 'abc.acme.com', > 'search_attr' => 'uid', > 'group_attr' => 'memberof', > 'cache_refresh' => 300, > 'cache_retry' => 15, > 'cache_expiry' => 600, > ); > > Authentication works fine.. Just AD group membership is failing. For the group membership to work, AD would require a different configuration (check out the sample AD config on wiki). The matter is, LDAP search mode must work to get the group information from the server. -- Denis Ovsienko