You are not logged in.

Announcement

 Téléchargez la dernière version stable de GLPI      -     Et vous, que pouvez vous faire pour le projet GLPI ? :  Contribuer
 Download last stable version of GLPI                      -     What can you do for GLPI ? :  Contribute

Pages: 1

#1 2008-05-05 23:48:52

drummerboy_1985
Member
Registered: 2008-05-05
Posts: 5

LDAP Integration Problems

I'm having a problem with LDAP integration on my newly installed version of GLPI.  I'm having adding usernames through LDAP and it's giving me an error User not found or several users found.  The the ldap settings look to match up to what is needed; however, and the test is successful with any user account that I try but it still will not pull any LDAP information.  Please let me know if anyone has had this problem or anyone can help.  I've looked through the logs and have tried everything.

Offline

#2 2008-05-06 04:13:33

drummerboy_1985
Member
Registered: 2008-05-05
Posts: 5

Re: LDAP Integration Problems

I forgot to mention that I am trying to run this on a Windows 2000 Server Edition.  It seems that the ldap authentication is working; however, when looking using a tool to search the directory it seems that it can't find the users.  I noticed the post on Active Directory being hiearchial and ours certainly is.  Everyone is organized into their own OU.  Almost no one is in the baseDN.  I guessing this is cause part of the problem.  Does anyone know a better way to filter that what is reccomended on the site.  I am using the newest stable version of GLPI which is 0.70.2.

Offline

#3 2008-05-06 08:28:31

wawa
GLPI-DEV
From: Montpellier / France
Registered: 2006-07-03
Posts: 6,019
Website

Re: LDAP Integration Problems

hello
could user from AD authenticate on GLPI ? are they automatically added ?
what are you ldap affectation rules ?

Offline

#4 2008-05-06 14:21:32

drummerboy_1985
Member
Registered: 2008-05-05
Posts: 5

Re: LDAP Integration Problems

User isn't being added to GLPI.  I'm getting the error "User not found or several users found".  These users aren't adding into the GLPI program.  I'm using (objectClass=user) as my connection filter.

Last edited by drummerboy_1985 (2008-05-06 14:22:10)

Offline

#5 2008-05-06 14:23:16

wawa
GLPI-DEV
From: Montpellier / France
Registered: 2006-07-03
Posts: 6,019
Website

Re: LDAP Integration Problems

could you please post the entire ldap configuration ?

Offline

#6 2008-05-06 19:25:20

drummerboy_1985
Member
Registered: 2008-05-05
Posts: 5

Re: LDAP Integration Problems

Sure, Here You Are.  As I mentioned it tests successful; however, it still doesn't pull any users into the database.

Test Successful

Server=ldap://10.165.10.10   
LDAP Port=389
Basedn=DC=cons,DC=local   
rootdn=CN=ldap,DC=cons,DC=local   
Pass=*****   
Connection filter=(objectClass=user)
Login Field=samaccountname    
Use TLS=no
Time zone=GMT -5 hour(s)

Search type=Users & Groups
User attribute containing its groups=memberof
Filter to search in groups=(objectClass=group)   
Group attribute containing its users=member
Use DN in the search=Yes

Surname=sn   
First name=givenname
Comments=info
E-Mail=mail
Phone=telephonenumber
Phone 2=otherphone
Mobile=mobile

Offline

#7 2008-05-06 22:59:21

asemerdjian
Member
From: Los Angeles, Ca
Registered: 2008-04-16
Posts: 17

Re: LDAP Integration Problems

Reviewing your config:

Try using your FQDN, question is GLPI running on the LDAP server ?
I would change the following and try...

From: Basedn=DC=cons,DC=local
To: city.domain.com = Basedn=DC=city, DC=domain, DC=com

From: rootdn=CN=ldap,DC=cons,DC=local
To: city.domain.com = Basedn=DC=city, DC=domain, DC=com

From: Connection filter=(objectClass=user)
To: (&(objectClass=user)(objectcategory=person))

From: Filter to search in groups=(objectClass=group)
To: (objectClass=groupOfNames)

From: Group attribute containing its users=member
To: <blank>

Also when you are attempting to import an LDAP user, change your search filter to: (samaccountname=*)

Try the <Preconfiguration: Active Directory> found at the top

Use a LDAP browser to help with the config
Hope this helps...

Offline

#8 2008-05-07 00:26:11

drummerboy_1985
Member
Registered: 2008-05-05
Posts: 5

Re: LDAP Integration Problems

I have tried all of this.  Unfortunately I am getting the same result.  I am able to use Ldap Browser to get in easily; however, I think the filters are somehow not correctly getting the right users.  LDAP is not running on the same server as GLPI.  I am running these on two different servers.  Could this be causing some of the problems?  Please let me know.

Offline

#9 2008-05-07 18:01:35

asemerdjian
Member
From: Los Angeles, Ca
Registered: 2008-04-16
Posts: 17

Re: LDAP Integration Problems

I agree your filters maybe at cause, go minimalistic first.

Next, are there any firewalls or antivirus blocking port 389.
Are you able to do an ldap lookup from separate machine

If you have more than one ldap server in your config, could you lookup to that child domain?

Offline

Pages: 1

Board footer

Powered by FluxBB