You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@guacamole.apache.org by Tomas Maggio <to...@gmail.com> on 2017/11/04 05:58:01 UTC

Working LDAP config with FreeIPA

Has anyone been able to get Guacamole working with FreeIPA ?

I was able to set it up using the 'compat' DN (RFC2307) on ldap-user-base-dn
but could not make it work with ldap-user-search-filter.

Here's the current working config (this fails to provide access control as
anyone in the directory is allowed):

-e LDAP_HOSTNAME=ldap.example.com \
-e LDAP_USER_BASE_DN="cn=users,cn=compat,dc=example,dc=com" \
-e LDAP_GROUP_BASE_DN="cn=groups,cn=compat,dc=example,dc=com" \
-e LDAP_USERNAME_ATTRIBUTE="uid" \
-e LDAP_SEARCH_BIND_DN="uid=ldap,cn=sysaccounts,cn=etc,dc=example,dc=com" \
-e LDAP_SEARCH_BIND_PASSWORD=averysecurepassword \


Cheers,

Tomas