I configured an OpenLdap Authentication provider. From the WLS console I can browse the users and the groups in the OpenLdap but I cannot see which groups a user is member of.
Activating the DebugSecurityAtn, I discovered that the problem is with the filter that I specified for the configuration parameter "Static Group DNs from Member DN".
As a matter of facts, in my OpenLdap the groups are objects of type posixGroup, whose memberUid attribute has the same value of the uid attribute in the referenced inetOrgPerson object.
The filter that I have to provide receives in input the DN of the user and not its uid (which is part of the DN)...
Please, help me in writing the right filter or any working circumvention.