>>> What i'm missing?!
>> quote_ldap_dn ?
> No, seems no. Same result.
Boh. I've done some more tests, but insted of using:
exim -be
i've used:
exim -d+deliver -v -bt test@domain
and my LDAP query, as expected, work. The query finally is:
${lookup ldapm {user=LOCAL_AD_BIND_DN pass=LOCAL_AD_PASS ldap:///LOCAL_AD_BASE_DN?uid?sub?(&(|(objectClass=user)(objectClass=group))(memberOf=\
${quote_ldap:${sg {${lookup ldap {user=LOCAL_AD_BIND_DN pass=LOCAL_AD_PASS ldap:///LOCAL_AD_BASE_DN?distinguishedName?sub?(&(objectClass=group)(mail=${quote_ldap:${local_part}}@${quote_ldap:${domain}}))}}} {,,} {,}}}\
))}}
and using '|(objectClass=user)(objectClass=group)' i can also ''expand''
correctly nested group memberships; clearly exim do some loops, but finally
get the result.
>> Also, your sg's are problematic in the face of fields containing commas.
> Some more hint? Thanks.
Still i'm seeking feedback on 'sg', i don't see alternatives....
Thanks.
--
Errare è umano, ma per fare veramente casino
ci vuole la password di root (Zio Budda)
