Connect BBB directly to active directory

[hamid riyahi]

hello everyone

hope all doing well

i have a problem with connecting bigbluebutton to active directory , somebody can help me?

its my .env config

LDAP_SERVER=my active directory ip
LDAP_PORT=389
LDAP_METHOD=plain
LDAP_UID=uid
LDAP_BASE=dc=head,dc=agah-dc,dc=local
LDAP_AUTH=simple
LDAP_BIND_DN=CN=OnlineMeeting,OU=MeetingBBB,OU=AgahServices,DC=head,DC=agah-dc,DC=local
LDAP_PASSWORD=*****
LDAP_ROLE_FIELD=userRole
LDAP_FILTER=(&(attr1=value1)(attr2=value2))

but i have this error The email and password you entered did not match our records. Try again or click Forgot Password to reset your password.

[Jean Pluzo]

Hi,

I would start by trying to simply login (no LDAP_FILTER, ROLE_FIELD). See if that brings something to light.
Double check your credentials. Can you login to AD through other services?

How about Port? Does the AD Server have a possibility to authenticate through TLS (636 I think)?

Regards

J.

[hamid riyahi]

i tested without the LDAP_FILTER, ROLE_FIELD (commented) but i have the same error and i login with user and user is ok . i tryed this config with ldap search and ldap search have respond , you think i should try on  port 636?

[Jean Pluzo]

Entirely up to you. I don't know your Ldap configuration nor how you set it up.

If someone else configured your Ldap setup, you should start by asking them.

Regards,

J.

[Thierry Kauffmann]

Hi,

You should make sure the uid attribute's name is really "uid". Couldn't it be "samAccountName" or "userPrincipleName" ? (see https://ldapwiki.com/wiki/UserPrincipalName).

As proposed before, it is best to check with the person in charge of your AD.

Kind regards,

Thierry