[GUACAMOLE-804] LDAP authentication not working correctly - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Invalid
Affects Version/s: None
Fix Version/s: None
Component/s: guacamole-auth-ldap
Labels:
None

Description

LDAP authentication with database backend (as proposed here) can't correctly handle situation, when ldap-search-bind-dn is not contained in ldap-user-base-dn.
Eg.:
ldap-user-base-dn: ou=common,ou=users,dc=example,dc=com
ldap-search-bind-dn: uid=guacamole,ou=system,ou=users,dc=example,dc=com

In this situation guacamole user will not show LDAP users in Settings/Users and common user authentication will result it successful authentication followed by Unable to query list of objects from LDAP directory error.

Even with:
ldap-user-base-dn: ou=users,dc=example,dc=com

things are not working correctly for users from ou=common,ou=users,dc=example,dc=com.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Peter Kubica

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 31/May/19 08:59

Updated:: 24/Mar/20 08:15

Resolved:: 31/May/19 14:18