We installed UCS 4.3-3 and configured groups on portal entries.
My user account is a member of group “Domain Users” as a
univention-ldapsearch uid=XXX memberof shows.
memberof is also active:
root@ucs:~# ucr get ldap/overlay/memberof true
I did check all the steps in Problem: Restricting Portal Entries to Groups will Make them Disappear, even though it should not be necessary on 4.3 anymore.
In the logfile /var/log/univention/management-console-web-server.log I found the following error message:
13.03.19 12:41:23.805 MAIN ( ERROR ) : Could not get groups for u'Administrator': Traceback (most recent call last): File "/usr/sbin/univention-management-console-web-server", line 380, in get_user_groups user_dn = lo.searchDn(ldap.filter.filter_format('(&(uid=%s)(objectClass=person))', (self.username,))) File "/usr/lib/pymodules/python2.7/univention/admin/uldap.py", line 750, in searchDn raise univention.admin.uexceptions.ldapError(_err2str(msg), original_exception=msg) ldapError: Insufficient access
What else can I check?