LDAP Plugin for AD -- Issue with the Groups

[g.fer.ordas]

Hi

I am trying to Use the LDAP plugin to connect to an AD Server and it seems to work fine BUT for the Groups.

I got the users and group on the same CN=Users

The extract of my current config is:

  

<securityRealm class="hudson.security.LDAPSecurityRealm" plugin="ld...@1.11">
<server>awsdc1.company.com:389</server>
<rootDN>DC=company,DC=com</rootDN>
<inhibitInferRootDN>false</inhibitInferRootDN>
<userSearchBase>CN=Users</userSearchBase>
<userSearch>sAMAccountName={0}</userSearch>
<groupSearchBase>CN=Users</groupSearchBase>
<groupSearchFilter>{{(&amp; (cn={0}) (objectclass=group) ) }}</groupSearchFilter>
<groupMembershipStrategy class="jenkins.security.plugins.ldap.FromUserRecordLDAPGroupMembershipStrategy"/>
<managerDN>company\ldapclient/managerDN>
<managerPasswordSecret>ewrewrewrwewerwerwerweer=</managerPasswordSecret>
<disableMailAddressResolver>false</disableMailAddressResolver>
<displayNameAttributeName>displayname</displayNameAttributeName>
<mailAddressAttributeName>mail</mailAddressAttributeName>
<userIdStrategy class="jenkins.model.IdStrategy$CaseInsensitive"/>
<groupIdStrategy class="jenkins.model.IdStrategy$CaseInsensitive"/>
</securityRealm>

I am trying to add group using the prefilx : ROLE_<GROUP_NAME> but it does not work

if I add the group as such in capitals it will do it showing the icon of JUST 1 user, and looking at the logs it is executing the User search but it never discriminates the groups.

I feel I am missing something on this

Any tips??

Thanks!