You are not logged in.

Announcement

 Téléchargez la dernière version stable de GLPI      -     Et vous, que pouvez vous faire pour le projet GLPI ? :  Contribuer
 Download last stable version of GLPI                      -     What can you do for GLPI ? :  Contribute

Pages: 1

#1 2012-09-09 09:45:32

harshal_raj
Member
Registered: 2012-09-09
Posts: 5

Active Directory 2008R2/LDAP Configuration GLPI

Hi,
i am facing problem with ldap configuration. i have configure ldap using knowledge base provided on wiki. but, there is some problem presist. While importing user i am getting message that "NO USER TO BE IMPORTED".
But, if i tried to get groups from AD its working fine.

My LDAP Configuration as mentioned below:
Name: ABC
Default server : Yes
Active: Yes
Server:ldap://<ServerIP>
port:389
Connection filter : (&(objectClass=user)(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2)))
BaseDN:DC=<DomainName>,DC=<FQDN>
RootDN:<DomainName>\administrator
LoginField:Administrator

Test of connection to LDAP directory:
Test successful (Main server :ABC)


currently i am using GLPI (0.83.4)+OCS(2.0.5) over the Ubuntu server 11.10 with APACH2, MYSQL 5.1, PHPMYADMIN,WEBMIN
Frankly i am not familer with linux/debian platform.

Please help to resolve same.

Thanks
Harshal

Last edited by harshal_raj (2012-09-09 10:00:03)

Offline

#2 2012-09-10 07:08:12

wawa
GLPI-DEV
From: Montpellier / France
Registered: 2006-07-03
Posts: 6,019
Website

Re: Active Directory 2008R2/LDAP Configuration GLPI

loginfield = samaccountname
rootdn must be an LDAP DN and not Domain\Administrator

Offline

#3 2012-09-10 07:13:40

harshal_raj
Member
Registered: 2012-09-09
Posts: 5

Re: Active Directory 2008R2/LDAP Configuration GLPI

Thanks for update. but no luck. same error getting.

Offline

#4 2012-09-11 12:32:35

teguh.umar
Member
From: Indonesia
Registered: 2011-05-20
Posts: 160

Re: Active Directory 2008R2/LDAP Configuration GLPI

at server, just put your AD ip server, this is jus an example in mys setting (and it is worked for me)

Server: [AD server ip]
Connection filter:
Basedn : ou=UserAccounts,dc=corp,dc=oss,dc=co,dc=id
rootdn (for non anonymous binds) : user@corp.oss.co.id
Pass (for non-anonymous binds) : [password for user@corp.oss.co.id]
Login Field : samaccountname

Don't forget to make it active, the reason I use "ou=UserAccounts,dc=corp,dc=oss,dc=co,dc=id" is because all my user are in that OU.

GLPI 10.0.10
Installation mode: zip on OREL9

Offline

#5 2012-09-11 19:26:33

harshal_raj
Member
Registered: 2012-09-09
Posts: 5

Re: Active Directory 2008R2/LDAP Configuration GLPI

all combinations are tested but result is same. still able to connect domain groups but not users.
is any way to get error logs. it will help to find exact cause?

Last edited by harshal_raj (2012-09-11 19:27:23)

Offline

#6 2012-09-12 09:09:07

tblinstrub
Member
Registered: 2012-09-12
Posts: 3

Re: Active Directory 2008R2/LDAP Configuration GLPI

Hi,

I had the same problem.
There is a problem with the Combination of more than two filters.
Please try

(&(&(objectClass=user)(objectCategory=person))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))

as filter.
This did the job for me.

Offline

#7 2012-09-13 07:28:55

harshal_raj
Member
Registered: 2012-09-09
Posts: 5

Re: Active Directory 2008R2/LDAP Configuration GLPI

Thanks, but no result.

to avoid delay in implementation i have upload user details along with DN using file injection plugin in to database.

Currently my work and test environment is working. or we can say its just a temporary arrangement.

Offline

#8 2014-06-24 13:12:44

behd
Member
Registered: 2010-04-23
Posts: 6

Re: Active Directory 2008R2/LDAP Configuration GLPI

teguh.umar wrote:

rootdn (for non anonymous binds) : user@corp.oss.co.id

Thanks Teguh! even if it took me only 1 minute to find this post, could someone update the wiki there:
http://www.glpi-project.org/wiki/doku.php?id=en:ldap

And change this sentence with the information from Teguh:
"the RootDN would look like this: CN=GLPI user search,CN=Users,DC=myAD,DC=example,DC=com"
-> This doesn not work on Windows Server 2008R2

Thanks!
~behd

Last edited by behd (2014-06-24 13:13:14)

Offline

#9 2016-05-30 12:03:25

qpgmr5
Member
Registered: 2016-05-30
Posts: 1

Re: Active Directory 2008R2/LDAP Configuration GLPI

Ldap Settings, Hope that this wil help someone, this works from my Linux server to my Windows 2008 R2:

Connection filter:
(&(objectClass=user)(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(!(samaccountname=*$)))

Basedn:
OU=ouOfYourUsers,DC=domain,DC=com

Rootdn:
domain\user

! LoginField:
samaccountname

Offline

#10 2021-10-20 22:49:26

ejerick
Member
Registered: 2021-10-20
Posts: 1

Re: Active Directory 2008R2/LDAP Configuration GLPI

What if the default port which is 389 is already been use on our Active Directory Server, can we assign or use any ports on LDAP?

Offline

#11 2021-10-21 12:16:20

WebGreg
Member
Registered: 2020-02-27
Posts: 729

Re: Active Directory 2008R2/LDAP Configuration GLPI

ejerick wrote:

What if the default port which is 389 is already been use on our Active Directory Server, can we assign or use any ports on LDAP?

https://techexpert.tips/glpi/glpi-ldap- … directory/

--
GLPI 10.0.7
GLPI-Inventory 1.2.1
Ubuntu Server 20.04 LTS

Offline

Pages: 1

Board footer

Powered by FluxBB