We have configured nextcloud and everything is working great. I have a question though that I am hoping someone can answer. In the LDAP documentation it states:
Use this to control which LDAP users are listed as Nextcloud users on your Nextcloud server. In order to control which LDAP users can login to your Nextcloud server use the Login filter. Those LDAP users who have access but are not listed as users (if there are any) will be hidden users. You may bypass the form fields and enter a raw LDAP filter if you prefer.
We have configured our LDAP authentication to allow users/persons in a specific group access to the nextcloud in the gui:
(&(|(objectclass=person)(objectclass=user))(|(|(memberof=CN=Cloud Users,OU=Security Groups,OU=IT,OU=foo,DC=domain,DC=local)(primaryGroupID=17194))))
This seems to work because the list of users in that group appear in the users tab on nextcloud, but currently, any authenticated user in our AD can login to the nextcloud and upload files. Based on the wording above, this tells me that they are hidden users. Is there any way to disable hidden user logins, or am I missing something bigger?