I have spent a lot of time reading and goggling, and I just can't make it work, any help will be appreciated, this is the last roadblock before I can put it on production:
I have a Active Directory domain - abc.local, to make things simple, I created a user called owncloud and put it into the Users OU, the domain controller is server1.abc.local
Host: server1.abc.local
Base: dc=abc,dc=local
Name: owncloud
Password: password
User Login Filter: uid=%uid
User List Filter: objectClass=person
Group Filter:
Port: 389
Base User Tree: OU=users,OU=abc,DC=local
Base Group Tree: OU=abc,DC=local
Group-Member association: uniqueMember
Use TLS: unchecked
Case insensitve LDAP server: checked
Display Name Field: uid
Group Display Name Field: cn
I am getting the Info log message similar to this:
Info user_ldap No or empty name for cn=john doe,ou=users,dc=abc,dc=local, skipping.
My questions are:
1. Do I miss anything in the LDAP options?
2. After the LDAP is set up successful, is there anything else I need to do? Or every accounts in Users OU automaticlly able to login.
3. In the ownCloud login page, what should I entry to login? So I use
Username: abc\owncloud
Password: password
[Solved] ownCloud Active Directory LDAP Authentication
Forum rules
Before you post; make sure you are using at least PHP Version 5.3.x - Also read How To Solve Problems By Yourself
Before you post; make sure you are using at least PHP Version 5.3.x - Also read How To Solve Problems By Yourself
4 posts
• Page 1 of 1
[Solved] ownCloud Active Directory LDAP Authentication
by raytheman » Sat Aug 18, 2012 12:21 am
Last edited by raytheman on Tue Aug 21, 2012 6:07 pm, edited 1 time in total.
- raytheman
- Newbie
- Posts: 6
- Joined: Fri Aug 17, 2012 6:23 pm
Re: ownCloud Active Directory LDAP Authentication, please he
by swacka » Sun Aug 19, 2012 9:52 am
1. Don't know but here are my settings:
Host: server.domain.se
Base: OU=Users,OU=company,DC=domain,DC=se
Name: (username to a domain admin)
Password: (a password)
User Login Filter: (&(sAMAccountName=%uid)(objectClass=person)(memberOf=CN=CloudGroup,OU=special,OU=groups,DC=domain,DC=se)(!(userAccountControl:1.2.840.113556.1.4.804:=2)))
Group Filter: (none)
Port: 3268
Base User Tree: OU=Users,OU=company,DC=domain,DC=se
Base Group Tree: None
Group-Member association: uniqueMember
Use TLS: unchecked
Case insensitve LDAP server: unchecked
Display Name Field: sAMAccountName
Group Display Name Field: (none)
2. It should be that all users that fits your ldap-query should be able to login. Ex from my line: sAMAccountName=%uid, objectClass=person. All accounts that are persons that exists in "memberOf=CN=CloudGroup,OU=special,OU=groups,DC=domain,DC=se" (a custom group) will be able to login.
3. In my case I can login with just user and password, no need to put domain\user and password.
Hope it helps.
And about the ldap-query, thanks to people here on the forum (sorry can't remember the names)
Host: server.domain.se
Base: OU=Users,OU=company,DC=domain,DC=se
Name: (username to a domain admin)
Password: (a password)
User Login Filter: (&(sAMAccountName=%uid)(objectClass=person)(memberOf=CN=CloudGroup,OU=special,OU=groups,DC=domain,DC=se)(!(userAccountControl:1.2.840.113556.1.4.804:=2)))
Group Filter: (none)
Port: 3268
Base User Tree: OU=Users,OU=company,DC=domain,DC=se
Base Group Tree: None
Group-Member association: uniqueMember
Use TLS: unchecked
Case insensitve LDAP server: unchecked
Display Name Field: sAMAccountName
Group Display Name Field: (none)
2. It should be that all users that fits your ldap-query should be able to login. Ex from my line: sAMAccountName=%uid, objectClass=person. All accounts that are persons that exists in "memberOf=CN=CloudGroup,OU=special,OU=groups,DC=domain,DC=se" (a custom group) will be able to login.
3. In my case I can login with just user and password, no need to put domain\user and password.
Hope it helps.
And about the ldap-query, thanks to people here on the forum (sorry can't remember the names)
- swacka
- Newbie
- Posts: 2
- Joined: Fri May 11, 2012 7:18 am
Re: ownCloud Active Directory LDAP Authentication, please he
by drhirn » Mon Aug 20, 2012 10:27 am
Here are my setting for a Active Directory:
Host: server.test.xx
Base: dc=test,dc=xx
Name: CN=Domainadmin,CN=Users,DC=test,DC=xx
Password: The Password
User Login Filter: sAMAccountName=%uid
User List Filter: objectClass=person
Group List Filter: objectClass=group
Port: 389
Base User Tree: OU=OU_Users,DC=test,DC=xx ("OU_Users" is my Organisational Unit the users are in)
Base Group Tree: OU=OU_UserGroups,DC=test,DC=xx ("OU_UserGroups" is my Organisational Unit the groups are in)
Group-Member association: uniqueMember
Use TLS: Off
Case insensitive LDAP Server: ON
Display Name Field: sAMAccountName
Group Display Name Field: sAMAccountName
Working with Owncloud 4.0.7
Regards
Stefan
Host: server.test.xx
Base: dc=test,dc=xx
Name: CN=Domainadmin,CN=Users,DC=test,DC=xx
Password: The Password
User Login Filter: sAMAccountName=%uid
User List Filter: objectClass=person
Group List Filter: objectClass=group
Port: 389
Base User Tree: OU=OU_Users,DC=test,DC=xx ("OU_Users" is my Organisational Unit the users are in)
Base Group Tree: OU=OU_UserGroups,DC=test,DC=xx ("OU_UserGroups" is my Organisational Unit the groups are in)
Group-Member association: uniqueMember
Use TLS: Off
Case insensitive LDAP Server: ON
Display Name Field: sAMAccountName
Group Display Name Field: sAMAccountName
Working with Owncloud 4.0.7
Regards
Stefan
- drhirn
- Starter
- Posts: 92
- Joined: Wed Apr 25, 2012 11:50 am
Re: ownCloud Active Directory LDAP Authentication, please he
by raytheman » Mon Aug 20, 2012 7:42 pm
I finally got it working, the settings are almost identical to drhirn's settings. Now it is good to go live, big thanks to both drhirn and swacka!
- raytheman
- Newbie
- Posts: 6
- Joined: Fri Aug 17, 2012 6:23 pm
4 posts
• Page 1 of 1
Return to OwnCloud Community Edition 4.x and older
Who is online
Users browsing this forum: Bing [Bot] and 10 guests