You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@guacamole.apache.org by "Charlie Stamp (JIRA)" <ji...@apache.org> on 2019/03/29 16:56:00 UTC
[jira] [Created] (GUACAMOLE-768) SQL backed group doesn't work with
LDAP auth
Charlie Stamp created GUACAMOLE-768:
---------------------------------------
Summary: SQL backed group doesn't work with LDAP auth
Key: GUACAMOLE-768
URL: https://issues.apache.org/jira/browse/GUACAMOLE-768
Project: Guacamole
Issue Type: Bug
Components: guacamole-auth-ldap
Affects Versions: 1.0.0
Reporter: Charlie Stamp
If a user is created a SQL user (mysql in my case) then that user inherits group connections. If a user exists in LDAP in doesn't inherit group connections, but it does inherit administrative permissions. If there was a way to make a connection read-only that'd be great. The issue regarding using database groups mentioned using proper ACL style permissions and was incorrectly mark as resolved (or that line was mistakenly left in since that was ignored).
Inheriting administrative permissions does give access to all connections to LDAP users. It is a terrible work around only because I don't anyone editing connections except for IT staff.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)