The Basics
- Nextcloud Server version: Nextcloud Hub 25 Autumn (32.0.8)
- Operating system and version:
NetBSD 10.1 - Web server and version:
Apache 2.4.65 - PHP version:
8.3.27 - Is this the first time you’ve seen this error?:
yes - When did this problem seem to first start?
dunno(That happened even before the update to 32.0.8, the update did not resolve the issue)
- Installation method:
bare metal - Are you using CloudfIare, mod_security, or similar?
no
Summary of the issue you are facing:
I’m unable to add a group to a user, even though this works for other groups.
Steps to replicate it (hint: details matter!):
-
./occ -vvv group:adduser GroupNotWorking TheUser=> not working -
./occ -vvv group:adduser GroupWorking TheUser=> working -
via GUI the same effect, first group does not work, second group works
Log entries
$ ./occ -vvv group:adduser GroupNotWorking TheUser
...
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Checking if TheUser exists","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_explode_dn with parameters [\"TheUser\",0]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_explode_dn with parameters [\"TheUser\",0]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters [\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"(&(objectclass=inetOrgPerson)(!(uid=zahn))(!(uid=oneuid))(!(uid=wlgast*))(!(uid=someuid))(!(uid=otheruid)))\",[\"\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"readAttribute: uid=TheUser,ou=people,dc=abc-stadt,dc=de found","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters[\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"objectClass=*\",[\"primarygroupid\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"AuCLGqgMIKljeEu44zAc","level":0,"time":"2026-04-10T06:38:03+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ",
"message":"Requested attribute primarygroupid not found for uid=TheUser,ou=people,dc=abc-stadt,dc=de","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
-------------------------------------------------------------------
$ ./occ -vvv group:adduser GroupWorking TheUser
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Checking if TheUser exists","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_explode_dn with parameters [\"TheUser\",0]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_explode_dn with parameters [\"TheUser\",0]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters[\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"(&(objectclass=inetOrgPerson)(!(uid=zahn))(!(uid=oneuid))(!(uid=wlgast*))(!(uid=someuid))(!(uid=otheruid)))\",[\"\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"readAttribute: uid=TheUser,ou=people,dc=abc-stadt,dc=de found","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters[\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"objectClass=*\",[\"primarygroupid\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Requested attribute primarygroupid not found for uid=TheUser,ou=people,dc=abc-stadt,dc=de","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters[\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"objectClass=*\",[\"gidnumber\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_read with parameters[\"(resource)\",\"uid=TheUser,ou=people,dc=abc-stadt,dc=de\",\"objectClass=*\",[\"uid\"],0,-1]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"initializing paged search for filter(&(memberuid=TheUser)(&(|(objectclass=posixGroup))(|(cn=excinema)(cn=GroupNotWorking)(cn=cnOne)(cn=cnTwo)(cn=intern)(cn=cnThree)(cn=cnFour)(cn=cnFive)(cn=rz)(cn=cnSix)))),base dc=abc-stadt,dc=de,attr [\"memberuid\",\"cn\",\"dn\"],pageSize 1000,offset 0","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
{"reqId":"DuTFEoT2pcyi3nXPWDVY","level":0,"time":"2026-04-10T06:41:26+00:00","remoteAddr":"","user":"--","app":"user_ldap","method":"","url":"--","scriptName":"./occ","message":"Calling LDAP function ldap_search with parameters[\"(resource)\",\"dc=abc-stadt,dc=de\",\"(&(memberuid=TheUser)(&(|(objectclass=posixGroup))(|(cn=excinema)(cn=GroupNotWorking)(cn=cnOne)(cn=cnTwo)(cn=intern)(cn=cnThree)(cn=cnFour)(cn=cnFive)(cn=rz)(cn=cnSix))))\",[\"memberuid\",\"cn\",\"dn\"],0,0,-1,0,[{\"oid\":\"1.2.840.113556.1.4.319\",\"value\":{\"size\":1000,\"cookie\":\"\"},\"iscritical\":false}]]","userAgent":"--","version":"32.0.8.2","occ_command":["./occ","-vvv"],"data":{"app":"user_ldap"}}
Nextcloud
$ ./occ config:list system
{
"system": {
"instanceid": "***REMOVED SENSITIVE VALUE***",
"passwordsalt": "***REMOVED SENSITIVE VALUE***",
"secret": "***REMOVED SENSITIVE VALUE***",
"trusted_domains": [
"box.abc-stadt.de"
],
"datadirectory": "***REMOVED SENSITIVE VALUE***",
"skeletondirectory": "\/box\/httpd\/skeleton",
"overwrite.cli.url": "https:\/\/box.abc-stadt.de",
"auth.bruteforce.protection.enabled": true,
"dbtype": "mysql",
"version": "32.0.8.2",
"dbname": "***REMOVED SENSITIVE VALUE***",
"dbhost": "***REMOVED SENSITIVE VALUE***",
"dbport": "",
"dbtableprefix": "oc_",
"mysql.utf8mb4": true,
"dbuser": "***REMOVED SENSITIVE VALUE***",
"dbpassword": "***REMOVED SENSITIVE VALUE***",
"installed": true,
"lost_password_link": "disabled",
"filelocking.enabled": true,
"memcache.local": "\\OC\\Memcache\\APCu",
"memcache.locking": "\\OC\\Memcache\\Redis",
"redis": {
"host": "***REMOVED SENSITIVE VALUE***",
"port": 0,
"timeout": 0
},
"ldapUserCleanupInterval": 51,
"ldapProviderFactory": "\\OCA\\User_LDAP\\LDAPProviderFactory",
"maintenance": false,
"mail_from_address": "***REMOVED SENSITIVE VALUE***",
"mail_smtpmode": "sendmail",
"mail_smtpauthtype": "LOGIN",
"mail_domain": "***REMOVED SENSITIVE VALUE***",
"default_phone_region": "DE",
"theme": "",
"loglevel": 0,
"updater.release.channel": "stable",
"activity_expire_days": 30,
"encryption.legacy_format_support": false,
"encryption.key_storage_migrated": false,
"maintenance_window_start": "1"
}
}
$
Apps
$ ./occ app:list
Enabled:
activity: 5.0.0
admin_audit: 1.22.0
announcementcenter: 7.3.0
bookmarks: 16.1.3
bruteforcesettings: 5.0.0
circles: 32.0.0
cloud_federation_api: 1.16.0
collectives: 4.2.0
comments: 1.22.0
contacts: 8.3.7
contactsinteraction: 1.13.1
dashboard: 7.12.0
dav: 1.34.2
deck: 1.16.3
federatedfilesharing: 1.22.0
federation: 1.22.0
files: 2.4.0
files_downloadlimit: 5.0.0
files_external: 1.24.1
files_pdfviewer: 5.0.0
files_reminders: 1.5.0
files_sharing: 1.24.1
files_trashbin: 1.22.0
files_versions: 1.25.0
firstrunwizard: 5.0.0
forms: 5.2.6
groupfolders: 20.1.12
logreader: 5.0.0
lookup_server_connector: 1.20.0
nextcloud_announcements: 4.0.0
notes: 4.13.1
notifications: 5.0.0
oauth2: 1.20.0
password_policy: 4.0.0
photos: 5.0.0
privacy: 4.0.0
profile: 1.1.0
provisioning_api: 1.22.0
quota_warning: 1.23.0
recommendations: 5.0.0
related_resources: 3.0.0
richdocuments: 9.0.5
serverinfo: 4.0.0
settings: 1.15.1
sharebymail: 1.22.0
spreed: 22.0.11
support: 4.0.0
survey_client: 4.0.0
systemtags: 1.22.0
tasks: 0.17.1
text: 6.0.1
theming: 2.7.0
twofactor_backupcodes: 1.21.0
updatenotification: 1.22.0
user_ldap: 1.23.0
user_status: 1.12.0
viewer: 5.0.0
weather_status: 1.12.0
webhook_listeners: 1.3.0
workflowengine: 2.14.0
Disabled:
app_api: 32.0.0 (installed 32.0.0)
encryption: 2.20.0 (installed 2.3.0)
files_rightclick: 0.15.1 (installed 1.6.0)
suspicious_login: 10.0.0 (installed 4.3.0)
twofactor_nextcloud_notification: 6.0.0
twofactor_totp: 14.0.0
user_migration: 8.0.0 (installed 8.0.0)
$
Thank’s in advance
Kind regards
Thomas