LDAP

Madsonic Server 6.x
albertocastillo2001
Posts: 14
Joined: 01 Oct 2017, 11:10
Has thanked: 0
Been thanked: 1 time

Re: LDAP

Unread post by albertocastillo2001 »

Thank you. I also checked the ldap info page. Seems that the only kind of allowed groups are based on "groupofnames" class. I guess it's not possible to use "posixGroups" right?

Thanks

Enviado desde mi ONE A2003 mediante Tapatalk
User avatar
Madsonic
Administrator
Administrator
Posts: 984
Joined: 07 Dec 2012, 03:58
Answers: 7
Has thanked: 1201 times
Been thanked: 470 times

Re: LDAP

Unread post by Madsonic »

albertocastillo2001 wrote:Thank you. I also checked the ldap info page. Seems that the only kind of allowed groups are based on "groupofnames" class. I guess it's not possible to use "posixGroups" right?

Thanks

Enviado desde mi ONE A2003 mediante Tapatalk
Try to setup your Madsonic Ldap configuration as follow:

LDAP group filter:

Code: Select all

(memberUid={1})

LDAP group role attribute:

Code: Select all

cn
Tested with OpenLDAP on Ubuntu 17.04 server

LDIF example:

Code: Select all

dn: ou=possix,dc=madsonic,dc=org
objectClass: organizationalUnit
objectClass: top
ou: possix

dn: cn=madsonic.admin,ou=groups,dc=madsonic,dc=org
objectClass: posixGroup
objectClass: top
cn: madsonic.admin
gidNumber: 1002
memberUid: bob

dn: cn=madsonic.config,ou=possix,dc=madsonic,dc=org
objectClass: posixGroup
objectClass: top
cn: madsonic.config
gidNumber: 1001
memberUid: bob

dn: uid=bob,ou=users,dc=madsonic,dc=org
objectClass: posixAccount
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: top
cn: bob
gidNumber: 500
homeDirectory: /home/users/bob
sn: bob
uid: bob
uidNumber: 1002
userPassword: bob
Best regards
albertocastillo2001
Posts: 14
Joined: 01 Oct 2017, 11:10
Has thanked: 0
Been thanked: 1 time

Re: LDAP

Unread post by albertocastillo2001 »

That's the way I did with the older stable version. It would never grab the roles. I will try with the latest one available. Thanks!

Enviado desde mi ONE A2003 mediante Tapatalk
albertocastillo2001
Posts: 14
Joined: 01 Oct 2017, 11:10
Has thanked: 0
Been thanked: 1 time

Re: LDAP

Unread post by albertocastillo2001 »

Hi!

I am really sorry I couldn't answer before. but had to halt this project for a while.
I came back to it today and attempted to setup LDAP using posixGroups.

I had to reinstall Madsonic snapshot due to the license key no longer being valid. However, using the trial it seems to work well using posixGroups, auth is done properly with the correct user level depending on the group the user is added.

Thanks!
These users thanked the author albertocastillo2001 for the post:
Madsonic
Rating: 7.69%
Post Reply