You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@guacamole.apache.org by "Peter Kubica (JIRA)" <ji...@apache.org> on 2019/05/31 09:00:00 UTC

[jira] [Created] (GUACAMOLE-804) LDAP authentication not working correctly

Peter Kubica created GUACAMOLE-804:
--------------------------------------

             Summary: LDAP authentication not working correctly
                 Key: GUACAMOLE-804
                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-804
             Project: Guacamole
          Issue Type: Bug
          Components: guacamole-auth-ldap
            Reporter: Peter Kubica


LDAP authentication with database backend (as proposed [here|https://guacamole.apache.org/doc/gug/ldap-auth.html#ldap-and-database]) can't correctly handle situation, when _ldap-search-bind-dn_ is not contained in _ldap-user-base-dn_.
 Eg.:
 {{ldap-user-base-dn: ou=common,ou=users,dc=example,dc=com}}
 {{ldap-search-bind-dn: uid=guacamole,ou=system,ou=users,dc=example,dc=com}}

In this situation _guacamole_ user will not show LDAP users in Settings/Users and common user authentication will result it successful authentication followed by _Unable to query list of objects from LDAP directory_ error.

Even with:
 {{ldap-user-base-dn: ou=users,dc=example,dc=com}}

things are not working correctly for users from _ou=common,ou=users,dc=example,dc=com_.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)