Error LDAP Organization Map admins filter

[Workasis]

Please confirm the following

• [X] I agree to follow this project's code of conduct.
• [X] I have checked the current issues for duplicates.
• [X] I understand that AWX is open source software provided for free and that I might not receive a timely response.
• [X] I am NOT reporting a (potential) security vulnerability. (These should be emailed to security@ansible.com instead.)

Bug Summary

I have tried using the LDAP Organization Map to set a group child-group members as admin but i have the error below.

Invalid DN: memberof:1.2.840.113556.1.4.1941:=cn=engineering_admins,ou=groups,dc=example,dc=com

So LDAP Organization Map doesn't work when I use a more complex filter to search nested groups

My LDAP Organization Map configuration:

{
  "engineering": {
    "users": true,
    "admins": "memberof:1.2.840.113556.1.4.1941:=cn=engineering_admins,ou=groups,dc=example,dc=com",
    "remove_users": true,
    "remove_admins": true
  }
}

AWX version

22.4.0

Select the relevant components

• [X] UI
• [ ] UI (tech preview)
• [ ] API
• [ ] Docs
• [ ] Collection
• [ ] CLI
• [ ] Other

Installation method

kubernetes

Modifications

no

Ansible version

No response

Operating system

No response

Web browser

No response

Steps to reproduce

Settings > LDAP settings > LDAP Organization Map

{
  "engineering": {
    "users": true,
    "admins": "memberof:1.2.840.113556.1.4.1941:=cn=engineering_admins,ou=groups,dc=example,dc=com",
    "remove_users": true,
    "remove_admins": true
  }
}

Expected results

Memebers and sub members of the group cn=engineering_admins,ou=groups,dc=example,dc=com should be admin of the organization

Actual results

Invalid DN: memberof:1.2.840.113556.1.4.1941:=cn=engineering_admins,ou=groups,dc=example,dc=com

Additional information

No response

[fosterseth]

this error coming back from your LDAP server.

:1.2.840.113556.1.4.1941: does this part look right?

[Workasis]

The filter works when i tested it with ldapsearch. The error I mentioned is not from my LDAP server but it's coming from AWX. I'm unable to save the configuration on AWX after adding the filter line.