I’m testing LDAP(s) auth with Percona Server 8.4.6. The following is the configuration I have. I’m able to log in with the LDAP user. If I explicitly grant the user with permissions, then everything is working expected. However, I can’t get the role mapping to work where if a user logs in, the specific LDAP group maps to admin role. I started with creating the admin role with permissions. Then I created a user with is identified with authentication_ldap_simple plugin. The user belongs to a group called test-mysql-admins in LDAP. The following is my MySQL configuration. No matter what I do, when I try to log in, I do not get any permissions at all.
[mysqld]
plugin-load-add=authentication_ldap_simple.so
authentication_ldap_simple_server_host=dc.example.com
authentication_ldap_simple_server_port=636
authentication_ldap_simple_ssl=ON
authentication_ldap_simple_bind_base_dn=DC=example,DC=com
authentication_ldap_simple_user_search_attr=sAMAccountName
authentication_ldap_simple_bind_root_dn=CN=LDAP User,OU=Misc Users,DC=example,DC=com
authentication_ldap_simple_bind_root_pwd=somepassword
authentication_ldap_simple_log_status=6
authentication_ldap_simple_group_role_mapping=test-mysql-admins=admin