You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@guacamole.apache.org by "Daniele (Jira)" <ji...@apache.org> on 2021/02/21 12:33:00 UTC
[jira] [Comment Edited] (GUACAMOLE-1294) LDAP auth works, but the
list of users is not updated
[ https://issues.apache.org/jira/browse/GUACAMOLE-1294?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17287934#comment-17287934 ]
Daniele edited comment on GUACAMOLE-1294 at 2/21/21, 12:32 PM:
---------------------------------------------------------------
Hi [~vnick]. Thank you for your support. Solved, but I think there is a bug. I use an LDAP user with administrative privileges in Guacamole.
To solve I've just done the following steps:
# logged in using guacadmin
# changed the password of the MySQL "copy" of the LDAP user with a completely different password from the LDAP password
# logged in with with the LDAP user
Now I can see LDAP users and groups.
Then I've changed again the password of the MySQL 'copy' of the user to the same value of the password of the LDAP user and now I cannot see the LDAP users and groups anymore.
In my opinion, if the MySQL user has got the same password of the related LDAP user then Guacamole uses MySQL login first. Is it expected?
was (Author: percivaldi):
Hi [~vnick]. Thank you for your support. Solved, but I think there is a bug. I use an LDAP user with administrative provileges in Guacamole.
To solve I've just done the following steps:
# logged in using guacadmin
# changed the password of the MySQL "copy" of the LDAP user with a completely different password from the LDAP password
# logged in with with the LDAP user
Now I can see LDAP users and groups.
Then I've changed again the password of the MySQL 'copy' of the user to the same value of the password of the LDAP user and now I cannot see the LDAP users and groups anymore.
In my opinion, if the MySQL user has got the same password of the related LDAP user then Guacamole uses MySQL login first. Is it expected?
> LDAP auth works, but the list of users is not updated
> -----------------------------------------------------
>
> Key: GUACAMOLE-1294
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1294
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole-auth-ldap
> Affects Versions: 1.3.0
> Environment: Ubuntu 20.04
> Guacamole 1.3.0
> Tomcat 9
> MySQL 8
> Openjdk 8
> Reporter: Daniele
> Priority: Major
> Labels: ldap, list, login, users
> Attachments: Expected.jpg, Wrong.jpg
>
>
> I updated Guacamole step by step from version 0.9.14 to version 1.3.0.
> I use LDAP auth. This is the configuration:
> #LDAP properties
> ldap-hostname a.b.c.d
> ldap-port 389
> ldap-encryption-method none
> ldap-search-bind-dn CN=Administrator,CN=Users,DC=contoso,DC=com
> ldap-search-bind-password XXXXXXXXXXXXXXX
> ldap-user-base-dn DC=Users,DC=contoso,DC=com
> ldap-username-attribute sAMAccountName
> ldap-user-search-filter (objectClass=user)
> ldap-group-base-dn OU=Groups,DC=contoso,DC=com
> ldap-group-name-attribute cn
> I can login using LDAP credentials BUT ldap users does not appears in users management.
> I need to add MANUALLY the users with the same username in order to manage them.
> Besides when I enter the user configuration page I cannot see the expected authentication labels (see attachments)
> Apparently there are not errors in log files.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)