Hi, 

I'm trying to set an jenkins environment configured with ldap-plugin. 

My configuration is pretty simple and working for the log-in to the UI. 

I want to use groups by DN, I means I'm working for a company that manage the rights (RO, RW...) by the same group name but in a different OU. 

The context is ; 

dn : cn=admin, ou=<ACCOUNT_ID>, dc=test, dc=local

But I'm just able to add group with the CN. For example If i'm trying to add a group, it works only if I try to add "admin" but not with "cn=admin, ou=<ACCOUNT_ID>, dc=test, dc=local"

My problem is I have 100x the group "admin" in my ldap-server. So Jenkins will try to use the first result ? 

In the ldap-plugin documentation I see :

Note: in this field there are two available substitutions:
{0} - the fully qualified DN of the user
{1} - the username portion of the user 

So I tried to set the groupfilter to cn={0} If I understand the documentation that result cn = dn but its not working.

Here is an example of ldapsearch on my ldap-server : 

dn: cn=clusteradmin,ou=454g54-gre45,ou=test,ou=Perimeers,cn=ApplicationContext,dc=localuniqueMember: uid=grger,ou=Users,dc=local
uniqueMember: uid=gerger,ou=Users,dc=localuuid: afrf-52fe-fezcvd2s-fdsdv
accountId: afrf-52fe-fezcvd2s-fdsdvcn: clusteradminobjectClass: testRole
objectClass: groupOfUniqueNames
objectClass: top 

Can you help on that its very urgent please