Questions tagged [openldap]

0

votes
0

answer
3

Views

LDAP with Liferay - Unknown host where exists

I have to integrate LDAP with two different services: exoPlatform and Liferay. So I set up an LDAP server via a Docker image with these configurations: Server Name: openldap Base Provider URL: ldap://openldap:389 Base DN: cn=users,ou=Platform,o=acme,dc=example,dc=org My admin account is just: cn=ad...
Melinsuna
1

votes
4

answer
335

Views

Is there any solution available which supports 2FA in OpenLDAP for user authentication?

Currently we are using SimpleSAMLphp for SSO solution in our php application with OpenLDAP as a auth datasource and it's working fine. Now we need to implement 2FA in the login process, So I wanted to know if there is any inbuilt support for 2FA in OpenLDAP. I have found SimpleSAMLphp allows 2FA usi...
Vishal
1

votes
0

answer
162

Views

LDAP User/Group filter HIVE

I have a Ldap server and a group. Now I want to do the Ldap authentication for AWS HIVE using that group. Please find the details below: **CN=hadoop-admins OU=Groups,OU=Root DC=int,DC=domain,DC=com** I have put the values in the following hive properties: hive.server2.authentication.ldap.groupDNPatt...
Aditya Tiwari
0

votes
0

answer
6

Views

String to attributes jndi api

I try to resolve some problem. I have a difficulty in my function to update a user from interface jsf to ldap. My problem is convert string to attribute public static void updateUser(String name,Hashtable ldapEnv) throws NamingException { DirContext ctx = new InitialDirContext(ldapEnv); user user...
Ham Za
1

votes
2

answer
427

Views

Enable Unauthenticated binds in OpenLDAP

Just want to know if it is possible to configure OpenLDAP to enable unauthenticated binds. That is, the user just types in username and null password, and bind succeeds. There are some products, which are tied to LDAP server (for user name queries), but actually are not interested in authenticating...
frenzy man
1

votes
0

answer
131

Views

Error on operational attribute creation in OpenLDAP

Actually, in my LDAP, I have a groups ou populated with groupOfNames objects and a roles ou populated with groupOfMembers objects. I also configured the memberOf overlay to retrieve the groupOfMembers (ie roles) the user belong to in the memberof attribute. My goal is to have also an attribute membe...
J. Sabatier
1

votes
0

answer
384

Views

Failed to start avahi mDNS/DNS-SD stack

I have configured openldap manually on opensuse 42.3 and it's working fine until i didn't configure LDAP and Kerberos Client. after i configure use a directory as identity provider and checked(BEFORE REBOOT) getent passwd. i was able to see the users and able to login.After reboot the system the be...
user263850
1

votes
1

answer
290

Views

ldap3.core.exceptions.LDAPSessionTerminatedByServerError: session terminated by server

I am trying to run the code which is trying to build a connection: server = Server(host='localhost', port=33389, use_ssl=False, get_info=ALL) conn = Connection(server, user='uid=admin,ou=people,dc=example,dc=org', password=user-pass, raise_exceptions=False, authentication=SIMPLE) print(server.info)...
user5431918
1

votes
0

answer
298

Views

expressjs ldap authentication showing basic auth pop up form

I'm a newbie to expressjs and ldap. Need your help with getting my way through the code flow. I need to authenticate user credentials against ldap server. I'm using this ldap library https://github.com/vesse/node-ldapauth-fork for making it work. I get the pop-up form on my broswer that asks for my...
Sharat Chandra
1

votes
1

answer
376

Views

Using Dovecot LMTP as LDA

I am trying to set up a postfix mail server with dovecot as MDA. According to this link to set up dovecot to use LMTP I have done the following config. postfix main.cf virtual_transport = lmtp:unix:private/dovecot-lmtp master.cf submission inet n - y - - smtpd -o syslog...
ankitrokdeonsns
1

votes
0

answer
153

Views

Ldap/Laravel - Connection is unsuccessful when using SSL or TLS “Use of undefined constant LDAP_OPT_X_TLS_CACERTFILE”

Laravel Version: 5.2.45 Adldap2-Laravel Version: (Latest as of today) PHP Version: 7.2 LDAP Type : OpenLDAP adldap.php : 'use_ssl' => true, 'use_tls' => false, 'custom_options' => [ LDAP_OPT_PROTOCOL_VERSION => 3, LDAP_OPT_X_TLS_CACERTFILE => '/etc/ssl/certs/ca_certs.pem' ], Use of undefined const...
Thomas Gssnt
1

votes
1

answer
21

Views

C Language OpenLDAP API for obtaining number of attributes available for a search result entry

I want to retrieve the number of attributes available for an LDAP search result entry of type LDAPMessage obtained from ldap_search_ext_s(). I know it can be done manually by calling ldap_first_attribute() and ldap_next_attribue() APIs with the help of a loop and a counter variable. But is there any...
1

votes
0

answer
103

Views

django-auth-ldap members groups not woking

i managed to get ldap authentification working, but the users groups aren't. when a user is autheticated the username, firstname, email ..etc are copied to the session, but the boolean values (gotten from the groups the user belongs to) aren't. this is my settings.py : AUTHENTICATION_BACKENDS = [ 'd...
1

votes
2

answer
251

Views

Hyperledger Fabric-ca connection to a LDAP directory

We are implementing a Hyperledger Fabric solution. To do so, we set up a fabric-CA, using the minimal configuration (we are still trying to figure out how the things works) in a specific docker. As we need to login our users, using a email/password couple, we set up a LDAP component. We choosed to u...
Pmuller
1

votes
1

answer
38

Views

Symfony- Authenticating against LDAPserver

I am trying to authenticate my users against an LDAP servr. security: providers: my_ldap: ldap: service: Symfony\Component\Ldap\Ldap base_dn: 'DC=maxcrc,DC=com' search_dn: 'CN=manager,DC=maxcrc,DC=com' search_password: 'secret' default_roles: ROLE_USER ... firewalls: # disables authentication for as...
Chams Mansouri
1

votes
1

answer
53

Views

changing password ldapmodify over SSL to AD 2008 R2 fails with 0000052D: SvcErr: DSID-031A1248, problem 5003 (WILL_NOT_PERFORM)

When attempting an ldapmodify to set the unicode password (with the correct encoding) over SSL(636), the operation fails and Active Directory returns the following error code: 0000052D: SvcErr: DSID-031A1248, problem 5003 (WILL_NOT_PERFORM), data 0 I found countless threads and answers on resolving...
Chris McVey
1

votes
0

answer
38

Views

how to pause openldap with syncrepl replication?

I followed this link and setup two multi-master open-ldap server. Everything work fine. I want to test changes on one master. How can I pause replication ? OS: CentOS Linux release 7.5.1804 (Core) openldap: openldap-servers-2.4.44-15.el7_5.x86_64
user2867239
1

votes
0

answer
98

Views

Configuring the WSO2 IS to external LDAP

I've been following this documentation on how to connect to external LDAP server from WSO2 Identity Server. Now I am stuck at running the product. Upon running the WSO2 IS, I got an error saying that the admin user is not exist in PRIMARY. If I am using the existing configuration, everything went we...
ameruddin jamil
1

votes
0

answer
90

Views

LDAP: Find the DistinguishedName (DN) from the userPrincipalName (UPN) in AD with openldap

I'm trying to get ldapwhoami (OpenLDAP on linux) to report the DN when I bind to an AD server with a UPN. All I can seem to get back is the domain and the user. I would use ldapsearch, but I don't know the base (-b option) to start from. Any help is appreciated. Thanks! $ ldapwhoami -D '[email protected]
KevinLK
0

votes
0

answer
5

Views

Ldap search does not return all attributes of an account in active-directory

I am trying to search active-directory for all attributes of a computer account. All of the the attributes get listed completely in powershell but when i use ldap-search and open ldap in c++, i get only partial results even though the value is populated in the directory. Many of the posts suggested...
sham
1

votes
0

answer
40

Views

LDAP err32 on Jetty JAAS setting with Openldap

I try to LDAP JAAS configuraion with openldap. I got err32 which is not found object error. 5c10ab9e conn=1033 op=0 BIND dn='uid=joe,ou=people,dc=example,dc=org' method=128 5c10ab9e conn=1033 op=0 BIND dn='uid=joe,ou=people,dc=example,dc=org' mech=SIMPLE ssf=0 5c10ab9e conn=1033 op=0 RESULT tag=97...
jun
1

votes
0

answer
15

Views

Wrap RDBMS with LDAP service

All, In my product, we manage the user data in RDBMS (postgres). However, we got an requirement to make those data available over LDAP protocol. I have explored the OpenLDAP's backend-sql option. However, I found there is an requirement that the primary key used to identify the user records should...
param83
1

votes
0

answer
66

Views

How do I install LMDB as backend in openLDAP?

I have installed CentOS in the virtualbox. Now I want to install LDAP with LMDB as backend. When I've installed openLDAP, there was already a 'olcDatabase={2}hdb.ldif' file. Now I want to know how to change the database from HDB to LMDB.
CL2 Player
1

votes
0

answer
69

Views

OpenLDAP does not validate TLS certificate

I am trying to run OpenLDAP (2.4.44 on RedHat 7.6) as a client against an existing LDAP server with TLS. This is working well - too well, actually. It looks to me as if OpenLDAP accepts any server certificate, instead of validating it against the CAs I provided. Here is my ldap.conf file: TLS_CACERT...
Kevin Keane
1

votes
0

answer
32

Views

Kylo security implementation, OpenLDAP implementation in Kylo with Kerberos

We Are trying to integrate Kylo with OpenLDAP and Kerberos, but it seems like there are no configuration changes suggested in Kylo doc. https://kylo.readthedocs.io/en/latest/security/KyloKerberosSPNEGO.html only auth-ad changes are suggested in the document, but nothing for OpenLDAP. Can anyone plea...
ashutosh tiwari
1

votes
0

answer
28

Views

How to create a pool of clients that can be assumed by a parallel foreach loop

I'm currently working on a project where I need to write a lot of items to a LDAP directory. I've now created a parallel foreach loop that creates a new LDAP connection for each contact and adds that contact to the database. When the add function is completed the connection is closed. So for every t...
Arne Claerebout
1

votes
0

answer
63

Views

BookStack + openLDAP => How do I get BookStack roles to load from LDAP Groups?

I need some help please in getting BookStack and OpenLDAP to work to automatically map LDAP groups to BookStack Roles. I have the BookStack authentication via LDAP working but all users seem to only have Viewer permissions. I'm using this BookStack docker image: https://github.com/solidnerd/docker...
OokerBerry
1

votes
2

answer
1.3k

Views

Attribute is not being renamed by this code in LDAP

/** * ModifyRDN .java * Sample code to demostrate how ModifyRDN/ModifyDN works. */ import javax.naming.*; import javax.naming.directory.*; import java.util.Hashtable; public class ModifyRDN { public static void main(String[] args) { Hashtable env = new Hashtable(); env.put(Context.INITIAL_CONTEXT_...
user106991
1

votes
1

answer
1.4k

Views

ASP.NET, Open LDAP role based security

I have couple of applications developed in asp.net with authentication from Open LDAP. The applications are working fine and I am having no problem with authentication. The main problem is to manage user roles and responsibilities and the requirements change quite frequently. Can any one suggest an...
Saqib
1

votes
3

answer
3.5k

Views

Openldap + dynlist + posixGroup

I have problem with OpenLdap and permission to file. First - I set this in my slapd.conf: overlay dynlist dynlist-attrset labeledURIObject labeledURI Second - I make cn=test,ou=Projects,dc=example,dc=com with: dn: cn=test,ou=Projects,dc=example,dc=com gidNumber: 6789 objectClass: posixGroup...
Rafał Kamiński
1

votes
1

answer
147

Views

OpenLDAP user record insertion for authentication

I installed Open Ldap for windows in windows XP i want to Insert user information in Open Ldap. I don't now how to insert user information(like uid,mail,sn,password..etc). I tried with LDAP Admin Tool but it's not working. Is that i need to change something in Slapd.conf file as well as LDIF file.....
USER592105
1

votes
2

answer
1.3k

Views

OpenLDAP: Connection fails on Mac

On my Mac, I've installed OpenLDAP, modified /etc/openldap/ldap.conf and specified the path to the cert. However, I keep getting this error: SERVER_DOWN: { 'info': 'error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE: routines:SSL3_GET_SERVER_CERTIFICATE: certificate verify failed (unable to ge...
1

votes
1

answer
193

Views

openldap auththentication php5 - comparing the password

I'm trying to authenticate againest an ldap server I've created. The user password is stored within ldap as sha hash. However when I try accessing the userPassword attribute it doesn't exist. I have to login as the manager. Am assuming this isn't a very good idea on a production server. is there a w...
Ageis
1

votes
1

answer
4.4k

Views

LDAPException: Invalid Credentials (49) Invalid Credentials with grails

These are the imports that I am using: import com.novell.ldap.*; import java.io.UnsupportedEncodingException; and I am trying to do a very simple password validation that I found at: http://developer.novell.com/documentation/samplecode/jldap_sample/index.htm and I can't seem to get the bind to work....
xander528
1

votes
1

answer
226

Views

LDAP server configuration

I am trying to configure a LDAP server for network based system authentication for lab users. I have no domain for my network. But in slapd.conf file for the server configuration the suffix parameters ask for it. what should i provide for that or shall i comment that parameter in slapd.conf file. An...
user976754
1

votes
3

answer
4k

Views

How to get only the most specific objectClass from AD server using openLdap?

When using ldap_search to get users from Ad server, I get for each entry several objectClasses. I'm interested only in the most specific objectClass in the classes hierarchy. How do I get it? for example: for the entry name: user1 objectClass: top objectClass: person objectClass: organizationalPerso...
user1063489
1

votes
2

answer
1.9k

Views

How can I change username or email or phone number information in LDAP?

I have this script through which I can change my LDAP password but I also want to change my username or full name or email or phone number. How can I do that? When I echo out the records I only get info like my name and email but what do I need to do to make ldap_modify change my full name or phone...
Bulvak
1

votes
1

answer
129

Views

bash ldap too long output

In Bash I would like to do an ldap query. It went well but in the output it cuts the end of the line when it's a long line. For example it's fine, it reaches the domain component: # cn, ou4, ou3, ou2, ou1, dc When there are organization units with many children, it cuts: # cn, ou7, ou6, ou5, ou4, ou...
Lgn
1

votes
1

answer
1.9k

Views

How to authenticate to microsoft active directory through iOS App?

I am to authenticate username and password credentials to a Active Directory through the iOS App? I know that this post instructs us to include the openldap in the project, BUT this post here has indicated that there are inbuilt ldap protocol that I can use to connect with the Active Directory using...
1

votes
2

answer
1.9k

Views

dokuwiki with LDAP authentication

I've setup dokuwiki in my workplace. I'd like to set the authentication to LDAP but I don't manage to get it to work. My company is using OpenLDAP. I'm not sure if it's even possible since I probably don't have enough information about the LDAP settings. On our FTP server we use .htaccess to for...
TheLostOne

View additional questions