We had the same problem as we switched from simple to LDAP authentification: No groups are recognized. I try to recall our solution...
Wouldn't it help you, if you have groups?
What I still know is, that the default group is not found by DW if it has no gid in it! Only (posixGroup) groups with gid's are recognized with this config:
local.protected.php wrote//OpenLDAP config:
$conf['auth']['ldap']['server'] = 'ldap.domain.de';
$conf['auth']['ldap']['usertree'] = 'uid=%{user},OU=intern,OU=People,DC=domain,DC=de';
$conf['auth']['ldap']['userfilter'] = '(&(objectClass=posixAccount)(uid=%{user}))';
$conf['auth']['ldap']['grouptree'] = 'OU=Group,DC=cyperfection,DC=de';
$conf['auth']['ldap']['groupfilter'] = '(&(objectClass=posixGroup)(|(gidNumber=%{gid})(memberUID=%{user})))';
Im not sure, if this was the whole solution, but I'll post it, if it comes to my mind.
BlackFog
PS: Now i know it again: it was the need of urlencode the goup names if it contains "special" characters. Look at my quote at the last post:
Group membership with LDAP
Did u try the seach funktion here?