1,783 questions
0
votes
0
answers
79
views
setup LDAP nested groups subgroups dynlist
I want to integrate a service with my openldap.
But the service should be only accessible by members from a dedicated group.
I already enabled the dynlist module and tried multiple configurations.
...
- 1
-1
votes
1
answer
97
views
What config options might be affecting how the wildcard operater works in a LDAP query [closed]
I have two open OpenLDAP servers. A test environment and a production environment.
The wildcard operator seems to be not working in the production environment, but it does work in the test environment....
- 162
0
votes
2
answers
30
views
OpenLDAP, err=53 text=authentication required, despite anonymous enabled
I am using OpenLDAP (in a docker on Pi4b running Ubuntu LTS) for storing my Oracle TNS entries, on my Oracle VM OEL 7.9 I have configured ldap.ora and sqlnet.ora files and when I try to do tnsping , ...
1
vote
1
answer
43
views
Openldap: how to get all entries which contain ou=idmap?
This line return all entries with sambaIdmapEntry
ldapsearch -Q -H ldaps://ldap1.blu.priv -b dc=ldap1,dc=blu,dc=priv -D cn=mailAccountReader,ou=Manager,dc=ldap1,dc=blu,dc=priv -vvv -LLL -w password &...
- 825
0
votes
0
answers
58
views
Gitlab Invalid credentials for <user email>
Gitllab Info
Self-managed
GitLab information
Version: 17.6.2-ee
Revision: 6ff444aad3a
Problem
When login in webui by ldap,It shows "Invalid credentials for <user email>" and no ...
- 15
0
votes
0
answers
66
views
How to enable Hash Passwords in OpenLDAP With Docker
Can you help me, I need to enable password hashing at openLDAP level
I need to have situation where clients send password in PLAIN_TEXT and openLDAP store this as {SSHA}
I would like to enable this:
...
- 25
0
votes
0
answers
264
views
How to connect Apache Superset 4.1.1. to LDAP server?
I am using Apache Superset 4.1.1. docker compose setup and trying to connect Superset to LDAP using ldapjdbc driver. I am using openldap jdbc driver, also used CData’s ldap jdbc driver.
I wrote a ...
0
votes
0
answers
30
views
What's the ldap query for ldapsearch to fetch MinPwdLen attribute from windows adserver?
How can the query be found to get the value of attributes like MinPwdLen, MinPwdAge, etc., from a Windows AD server? I got the distinguished name for this attribute from JXplorer, but I'm unable to ...
- 1
0
votes
1
answer
202
views
Create my own schema in openLDAP to extend users informations
I would like to create my own schema in OpenLDAP 2.4.57. Here's the code (I changed the real name of schema and attributes)
dn: cn=myschema,cn=schema,cn=config
objectClass: olcSchemaConfig
cn: ...
- 342
1
vote
1
answer
132
views
implementation of mtls with php
I want to achieve mTLS on dummy php webpage from a guest to my Openldap Server.
I have issue and it seems my php never sends client certificate to my server even then I specified the options ...
- 38
1
vote
2
answers
388
views
Why the need to `decode_utf8` LDAP attribute values in an UTF-8 enviromment?
I wrote a Perl program (5.18.2 using NET::LDAP (perl-ldap-0.44-10.3.1.x86_64), both from SLES12 SP5) in an UTF-8 environment (LC_CTYPE="en_US.UTF-8", Emacs displays "UUU") that ...
- 4,730
0
votes
0
answers
126
views
pg_hba.conf for openldap doesn't work. In ldap server two seemingly similar commands have different result. Why?
I'm currently debugging why my postgres database cannot authenticate against openldap (slapd=2.4.57*). In pg_hba.conf I have the following line:
hostssl all all all ...
- 1,090
0
votes
2
answers
143
views
Rundeck group membership problems with OpenLDAP
I have followed the instructions on https://docs.rundeck.com/docs/administration/security/authentication.html#case-insensitive-username to authenticate from my OpenLDAP server. The rundeck version is ...
- 698
0
votes
2
answers
90
views
Ldap attribues for testing in Spring Boot with ApacheDS
I am trying to simulate a real Microsoft LDAP tree.
The application is working against a real LDAP, but using an inmemory LDAP server (ApacheDS) for testing in Spring Boot but it doesn't work. I can't ...
- 71
1
vote
1
answer
335
views
Importing ldap data throws issue with memberof
I exported my openldap using slapcat -n 1 -l directory.ldif
When I import to my newer openldap using slapadd -n 1 -l directory.ldif I get the following error:
register_at: AttributeType "( 1.2....
- 634
0
votes
1
answer
143
views
How to make an existing structural objectClass auxiliary?
I am setting up a new OpenLDAP server running Alma 8 to replace the function of an existing OpenLDAP server running CentOS 7.
On the original server, there are group entries with the following ...
- 469
0
votes
1
answer
175
views
rackslab/slurm-web can't vertify the user through openldap
slurm-web comes from the project https://github.com/rackslab/Slurm-web
When i configure authentication with openldap, and i use user/password as authentication, the login web page always says " ...
0
votes
1
answer
213
views
Authentication fails after enabling RequireGroup in openvpn-auth-ldap.so
I use openvpn-auth-ldap.so as an authentication plugin for openvpn
I only want to allow members under cn=corevpn,ou=tech,ou=group,dc=openldap,dc=example,dc=com to be able to log in openvpn
My ldap-...
0
votes
0
answers
46
views
wildcard is not working in Ldapsearch filter with ms active dir server
I wanted to bring to your attention an issue we are facing with the LDAP filter in MS Active Directory.
It has come to our notice that when applying a wildcard (*) filter to the group attribute in the ...
- 43
0
votes
1
answer
41
views
get all entries that do not have a specific child entry
I have this ldap scheme.
dc=company, dc=com
- ou=users
- uid=aaaa
- ou=car
- brand=audi
- brand=chevrolet
- uid=bbbb
...
- 827
0
votes
1
answer
758
views
Unable to install module "auth_ldap" because an external dependency is not met: Python library not installed: ldap
i already installed pip install python-ldap but the error persist im not sure if its working into windows might someone here's know how to fix the issue for odoo v16 using windows
i already installed ...
- 1
0
votes
0
answers
334
views
Openldap sync issue in multi-master replication
We are facing a synchronise issue in openldap setup we have. Following are the details:
We have 2 openldap servers configed with dynamic configurations and those are setup with multi-master ...
- 199
0
votes
1
answer
39
views
LDAP - 389ds - FluentD - Filter plugin - type record_transformer - can it have more than one <record> stanza entries?
Can FluentD 1.16.3/+ have more than one record entries inside filter plugin for type record_transformer?
I have the following configuration, but it seems like it's keeping ONLY the last record entry.
...
- 17.5k
-1
votes
1
answer
1k
views
OpenLDAP SASL/GSSAPI: Invalid credentials (49) SASL(-13): authentication failure: GSSAPI Failure: gss_accept_sec_context
Trying to configure my OpenLDAP to use SASL/GSSAPI (kerberos) authentication. My KDC server is up and running and I am able to create all of my principals and SPNs, and can kinit just fine.
But when ...
- 69
0
votes
1
answer
1k
views
openldap: add simple attributes to users via ldif?
How can I add some simple attributes to users in openldap using ldif and ldapadd/ldapmodify?
I would like each user/person to have optional mail, middle_name and city attributes.
using the follwing ...
- 30.8k
0
votes
1
answer
2k
views
SASL GSSAPI: ldap_sasl_interactive_bind : Other error (80) no credentials supplied
ldapsearch or ldapwhoami results in
# ldapwhoami
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind: Other (e.g., implementation specific) error (80)
additional info: SASL(-1): ...
- 69
0
votes
2
answers
554
views
Unable to import module 'lambda function': libldap_r-2.4.so.2 cannot open shared objectfile: No such file or directory
I've been dealing with this issue for the past few days now. I am trying to create a lambda layer with the following modules: cryptography, ldap3, and bonsai to use in my lambda_function that has a ...
0
votes
1
answer
207
views
OpenLDAP: how to add a date attribute in schema
Can't find a solution on the internet. I tried this but it does not work. I would appreciate any help (LDAP really is a headache).
root@9ae33b5bc07e:/# ldapadd -Y EXTERNAL -H ldapi:/// -f ...
1
vote
1
answer
258
views
shibboleth 5 with slapd integration login
I have spent 2+ weeks trying to get a Shibboleth 5 IdP stood up for our dev environment.
The players:
Shibboleth 5 IdP configured to run inside Jetty 11 servlet (no apache)
openldap (on same server)
...
0
votes
1
answer
465
views
No such object (32) error is occuring:ldapsearch -x -LLL -H ldap://IP -D "cn=admin,dc=mynewdomain,dc=com" -W -b cn=config "(objectClass=*)"
i have configured OpenLdap server and client, connection is successful, becouse i created a user and i logged in to that user account on ubuntu desktop. But when i type command like:
ldapsearch -x -...
0
votes
0
answers
100
views
How to efficiently collect all (string) values for all attributes of an LDAP search in a `char*[]` using the OpenLDAP 2.6 C client library?
I am implementing a specific LDAP search in C using the OpenLDAP 2.6 C client library. I know that the search only returns a specific set of attributes (namely mail, mailAlias, and mailAccount), ...
- 1,931
0
votes
1
answer
67
views
Prevent searching mail=* in OpenLDAP
As an OpenLDAP admin, how can I prevent anonymous (non-authenticated) users from searching for e.g. mail=* with a single Asterisk?
ldapsearch ... "mail=*"
must be disabled, but
ldapsearch ......
- 1
1
vote
0
answers
331
views
Openldap: how to set and use TLS1.2
Is it possible to specify which TLS version to use in OpenLDAP 2.6.3?
We migrated to that new version of OpenLDAP, but now most LDAP clients do not want to work with it because it automatically ...
- 232
1
vote
1
answer
225
views
OpenLdap: mdb log clean up
We are migrating from OpenLDAP 2.4.44 which had HDB as a database to OpenLDAP 2.6.3 which now has MDB as a database.
In older version to cleanup DB logs we used olcDbConfig attribute with value "...
- 232
0
votes
0
answers
1k
views
Troubleshooting TLS Handshake Failure after OpenSSL and OpenLDAP Upgrade
I have encountered an issue while upgrading OpenSSL and OpenLDAP on our Windows 2019 server.
The upgrade involved transitioning from OpenSSL version 1.1.1 to version 3.0.10 and OpenLDAP version 2.4.47 ...
- 315
0
votes
0
answers
114
views
python-ldap coudl't be installed
I'm trying to install python-ldap, but this raise an error:
"C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\VC\Tools\MSVC\14.29.30133\bin\HostX86\x64\cl.exe" /c /nologo /O2 /...
0
votes
1
answer
68
views
OpenLDAP filter not returning empty OUs
I've tried the recommended filter as well as various variations and still, I cannot get a list of the OUs with no child entries.
Search Base: ou=compay,ou=drivers,dc=core,dc=com
Filter: (&(...
- 922
0
votes
1
answer
818
views
Add Attributes and objectClasses to OpenLDAP server over LDAP using .ldif file
As the titles is worded:
I am looking for a way to run an ldapmodify / ldapadd command with bash and by said command it will run an .ldif file and it shall modify the schema of the server.
I have ...
- 1
-1
votes
1
answer
61
views
Building PTLIB using minGW
I'm currently facing several challenges while attempting to build PTLIB on MinGW. I've successfully resolved some dependencies, such as OpenSSL and Expat, but I'm encountering new issues during the ...
0
votes
1
answer
534
views
Gerrit shows LDAP: error code 48 - anonymous bind disallowed
I try to setup Gerrit with openldap authentication. Here's my config:
[auth]
type = LDAP
gitBasicAuthPolicy = HTTP
userNameCaseInsensitive = true
[ldap]
server = ldap://...
- 11
1
vote
0
answers
632
views
OpenLDAP password quality control
Background to the issue
The OpenLDAP overlay ppolicy provides password policy controls which allow configuring things like minimum password length, password aging, max fail account lockout and ...
- 349
0
votes
1
answer
824
views
osixia/openldap Docker image does not connect to my container
I'm trying to connect to osixia/openldap Docker image in order to authenticate users.
The thing is that I'm making the logic of the login in ASP.NET, and my code works fine and connects to the LDAP ...
- 1
0
votes
1
answer
401
views
PHP LDAP self signed root certificate error
TLDR:
PHP ldap_bind complains about CA's root certificate being self-signed.
Long version:
Hi everybody.
I've been searching for an answer for this problem for some time but can't seem to find a way ...
- 93
0
votes
1
answer
2k
views
OpenLDAP and phpLDAPAdmin not working as expected with Docker Compose
I have a docker-compose.yml file that defines the services I need for my development environment. Recently, I have been focusing on setting up two services, that is, the osixia/openldap:1.5.0 and ...
- 549
0
votes
1
answer
694
views
ActiveMQ Artemis LDAP authentication error - Login not working
I am trying to set up authentication in activemq artemis using LDAP. Based on instructions found on the Internet, I did the configuration only in the login.config file. I've heard that for ...
- 5
1
vote
1
answer
529
views
Undefined method `provider' for nil:nilclass. Gitlab and LDAP
Here is the error on gitlab main page:
Could not authenticate you from Ldapmain because "Undefined method `provider' for nil:nilclass".
Here are logs from gitlab production.log file:
...
1
vote
1
answer
135
views
Search users in a group - Jetty JAAS LDAP
I am using Jetty's LDAP Login Module to connect to an internal LDAP server. The LDAPLoginModule configuration (ldap-loginModule.conf) is provided as below:
ldap {
org.eclipse.jetty.jaas.spi....
- 3,968
1
vote
1
answer
770
views
How to add a group and restrict permission on group level by Enable Project-based security on Jenkins Pipeline
The LDAP integration is done successfully but when I try to apply project based security to the pipeline level it's not working as expected it is able to identify the group so in that case LDAP is ...
0
votes
1
answer
1k
views
Error trying to add entries with ldapadd: Server is unwilling to perform (53)
I'm trying to add entries to an ldap database I compiled, so I have the default configuration from the openldap site. The thing is, I exported an ldif file from an existing ldap server in order to ...
- 131
0
votes
1
answer
68
views
How can I retrieve detailed error information from ldapjs?
I'm working in the Ubuntu 20.04 and openLDAP 2.4.49 environment.
How can I retrieve detailed error information from ldapjs?
(ldapjs version is 3.0.5)
For example, if I change the password immediately ...
- 33