the arguments to util_ldap_cache_compare() are out of order in mod_auth_ldap.c, so require group directives are not processed properly. this patch results in correct group functionality: httpd-ldap/aaa-ldap/mod_auth_ldap.c 546,547c546,547 < result = util_ldap_cache_compare(r, ldc, sec->url, sec->group_attrib_is_dn ? < req->dn : req->user, ent[i].name, t); --- > result = util_ldap_cache_compare(r, ldc, sec->url, t, ent[i].name, > sec->group_attrib_is_dn ? req->dn : req->user);
Created attachment 2914 [details] patch for AuthLDAPGroup features
patch in my initial comments was incorrect, posted attachment to correct
This patch looks like it has already been applied. If this problem still exists in v2.0.45-dev, please reopen this bug report.