You are not logged in.
Hi,
i am facing problem with ldap configuration. i have configure ldap using knowledge base provided on wiki. but, there is some problem presist. While importing user i am getting message that "NO USER TO BE IMPORTED".
But, if i tried to get groups from AD its working fine.
My LDAP Configuration as mentioned below:
Name: ABC
Default server : Yes
Active: Yes
Server:ldap://<ServerIP>
port:389
Connection filter : (&(objectClass=user)(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2)))
BaseDN:DC=<DomainName>,DC=<FQDN>
RootDN:<DomainName>\administrator
LoginField:Administrator
Test of connection to LDAP directory:
Test successful (Main server :ABC)
currently i am using GLPI (0.83.4)+OCS(2.0.5) over the Ubuntu server 11.10 with APACH2, MYSQL 5.1, PHPMYADMIN,WEBMIN
Frankly i am not familer with linux/debian platform.
Please help to resolve same.
Thanks
Harshal
Last edited by harshal_raj (2012-09-09 10:00:03)
Offline
loginfield = samaccountname
rootdn must be an LDAP DN and not Domain\Administrator
Offline
Thanks for update. but no luck. same error getting.
Offline
at server, just put your AD ip server, this is jus an example in mys setting (and it is worked for me)
Server: [AD server ip]
Connection filter:
Basedn : ou=UserAccounts,dc=corp,dc=oss,dc=co,dc=id
rootdn (for non anonymous binds) : user@corp.oss.co.id
Pass (for non-anonymous binds) : [password for user@corp.oss.co.id]
Login Field : samaccountname
Don't forget to make it active, the reason I use "ou=UserAccounts,dc=corp,dc=oss,dc=co,dc=id" is because all my user are in that OU.
GLPI 10.0.10
Installation mode: zip on OREL9
Offline
all combinations are tested but result is same. still able to connect domain groups but not users.
is any way to get error logs. it will help to find exact cause?
Last edited by harshal_raj (2012-09-11 19:27:23)
Offline
Hi,
I had the same problem.
There is a problem with the Combination of more than two filters.
Please try
(&(&(objectClass=user)(objectCategory=person))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))
as filter.
This did the job for me.
Offline
Thanks, but no result.
to avoid delay in implementation i have upload user details along with DN using file injection plugin in to database.
Currently my work and test environment is working. or we can say its just a temporary arrangement.
Offline
rootdn (for non anonymous binds) : user@corp.oss.co.id
Thanks Teguh! even if it took me only 1 minute to find this post, could someone update the wiki there:
http://www.glpi-project.org/wiki/doku.php?id=en:ldap
And change this sentence with the information from Teguh:
"the RootDN would look like this: CN=GLPI user search,CN=Users,DC=myAD,DC=example,DC=com"
-> This doesn not work on Windows Server 2008R2
Thanks!
~behd
Last edited by behd (2014-06-24 13:13:14)
Offline
Ldap Settings, Hope that this wil help someone, this works from my Linux server to my Windows 2008 R2:
Connection filter:
(&(objectClass=user)(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(!(samaccountname=*$)))
Basedn:
OU=ouOfYourUsers,DC=domain,DC=com
Rootdn:
domain\user
! LoginField:
samaccountname
Offline
What if the default port which is 389 is already been use on our Active Directory Server, can we assign or use any ports on LDAP?
Offline
What if the default port which is 389 is already been use on our Active Directory Server, can we assign or use any ports on LDAP?
--
GLPI 10.0.7
GLPI-Inventory 1.2.1
Ubuntu Server 20.04 LTS
Offline