[druid-user] Re: How to fix service to service communication after LDAP is turned on?

This mapping doesn’t seem to do what I think it should do.

I expect that the list of users is derived automatically from the LDAP group.
But unfortunately, I still have to add every single LDAP user into the ldapAuthorizer for the login to work. Otherwise, users get at 403.

Just bringing this over from the Slack conversation:

Maybe it’s worth resurrecting this issue? https://github.com/apache/druid/issues/9256

I also came across this tidbit about the attribute id identifying the attribute used for LDAP groups by LDAP server. Maybe that’s something else to check?