You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@guacamole.apache.org by "Mike Jumper (Jira)" <ji...@apache.org> on 2020/11/13 23:09:00 UTC
[jira] [Commented] (GUACAMOLE-1211) LDAP + TOTP + MySQL: User
already exists
[ https://issues.apache.org/jira/browse/GUACAMOLE-1211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17231872#comment-17231872 ]
Mike Jumper commented on GUACAMOLE-1211:
----------------------------------------
{quote}
{code:none}
...
auth-provider: net.sourceforge.guacamole.net.auth.ldap.LDAPAuthenticationProvider
...
{code}
{quote}
*The {{auth-provider}} property does not exist.* It will have no effect, but it hurts my soul every time I see this. It was deprecated in 0.9.7 (2015) and was finally removed in 0.9.10-incubating (2016).
> LDAP + TOTP + MySQL: User already exists
> ----------------------------------------
>
> Key: GUACAMOLE-1211
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1211
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole, guacamole-auth-jdbc-mysql, guacamole-auth-ldap, guacamole-auth-totp
> Affects Versions: 1.2.0
> Reporter: Fabian I
> Priority: Minor
>
> Versions in use:
> * guacamole-auth-totp-1.2.0.jar
> * guacamole-auth-ldap-1.2.0.jar
> * guacamole-auth-jdbc-mysql-1.2.jar
> * guacamole 1.2
> * Tomcat9
> * MariaDB 10.3.25
> * Ubuntu Server 20.04.1
>
> Issue description:
> User 1 does his first login on Guacamole over LDAPS. After entering the correct credentials Guacamole says that the user already exists and aborts the logon. User 1 does his second login on Guacamole over LDAPS and gets successfully redirected to TOTP setup. Authentication is against Active Directory,
>
> Content of guacamole.properties:
> {code:java}
> #
> # MySQL properties
> #
> mysql-hostname: server
> mysql-port: port
> mysql-database: database
> mysql-username: user
> mysql-password: password
> mysql-auto-create-accounts: true
> #
> # TOTP properties
> #
> totp-issuer name
> totp-digits 6
> totp-period 30
> totp-mode sha1
> #
> # LDAP properties
> #
> auth-provider: net.sourceforge.guacamole.net.auth.ldap.LDAPAuthenticationProvider
> ldap-hostname: hostname
> ldap-port: 636
> ldap-encryption-method: ssl
> ldap-max-search-results: 100
> ldap-search-bind-dn: bind-dn
> ldap-search-bind-password: bind-password
> ldap-user-base-dn: base-dn
> ldap-username-attribute: sAMAccountName
> ldap-member-attribute: member
> #ldap-member-attribute-type: dn
> #ldap-user-attributes:
> ldap-user-search-filter: (search-filter)
> #ldap-config-base-dn:
> #ldap-group-base-dn:
> #ldap-group-name-attribute:
> #ldap-dereference-aliases:
> ldap-follow-referrals: false
> #ldap-max-referral-hops:
> ldap-operation-timeout: 10
> {code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)