done a little bit of investing using ldap debugging. Seems the problem is related to the earlier mentioned univention topic.
Kopano does the following ldap searches:
("dc=DOMAIN,dc=TLD" "(&(|(objectClass=posixGroup)(objectClass=kopano-dynamicgroup))(memberUid=USER))" objectClass kopanoSharedStoreOnly kopanoResourceType kopanoSecurityGroup uidNumber gidNumber ou cn cn modifyTimestamp
Result is one “posixGroup” with some members. Every member has a “memberUID” and a “member” attribute. Say “gidNumber” in the result is 4711.
Next kopano search for
("dc=DOMAIN,dc=TLD" "(&(|(objectClass=posixGroup)(objectClass=kopano-dynamicgroup))(gidNumber=4711))" uid )
As it is a posixGroup there is no “uid” member present. So ldap search result is empty.
This LDAP configuration has worked before with zarafa. Warning K-1504 has started after updating to kopano.
Maybe there is an error in kopano and search result should be the “member” attribute?