LDAP autentification problem

[Maksim Monakhov]

Hello, 

BBB for using in local network.

Ubuntu 16.04 + BBB 2.0-beta + Greenlight - work's fine.

I'm add OpenLDAP on server - Greenlight can't connect to it.

Unable to connect to the LDAP server. Please check your LDAP configuration in the env file and ensure your server is running.

OpenLDAP work, and availible. phpldapadmin work good.

/etc/default/slapd

SLAPD_SERVICES="ldap://localhost:1389/ ldaps:/// ldapi:///"

in console:

~# ldapsearch -h localhost -p 1389 -x -LLL -b dc=bbb,dc=server 'uid=rec' cn gidNumber

dn: uid=rec,dc=bbb,dc=server

gidNumber: 5000

cn: Rec Acc

/etc/phpldapadmin/config.php 

$servers->setValue('server','host','localhost');

$servers->setValue('server','port',1389);

$servers->setValue('server','base',array('dc=bbb,dc=server'));

$servers->setValue('login','bind_id','cn=admin,dc=bbb,dc=server');

in env

LDAP_SERVER=localhost

LDAP_PORT=1389

LDAP_METHOD=plain

LDAP_UID=uid

LDAP_BASE=dc=bbb,dc=server

LDAP_BIND_DN=cn=admin,dc=bbb,dc=server

LDAP_PASSWORD=mypassforadmin

what I'm doing wrong? 

[Matt S]

Looks like the port OpenLDAP uses is 389... does that help?

[Maksim Monakhov]

I changed the port after it did not work on the standard port. phpLDAPadmin  works with these settings

вторник, 30 января 2018 г., 19:57:35 UTC+3 пользователь Matt S написал:

[matt schenkman]

Sorry Maksim... you're saying it works now or still doesn't?  I'm new to greenlight as I didn't install it in 1.1 and used directly with Moodle.

~ Matt
347.416.NERD
get Gmail @ http://mail.google.com

--
You received this message because you are subscribed to a topic in the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/bigbluebutton-setup/JZyzzLdLFlA/unsubscribe.
To unsubscribe from this group and all its topics, send an email to bigbluebutton-setup+unsub...@googlegroups.com.
To post to this group, send email to bigbluebutton-setup@googlegroups.com.
Visit this group at https://groups.google.com/group/bigbluebutton-setup.
For more options, visit https://groups.google.com/d/optout.

[Maksim Monakhov]

Only greenlight doesn't work with LDAP

[Matt S]

I'm not too familiar with OpenLDAP vs LDAP, but I do know that 9 out of 10, it's usually the syntax of the DN you're trying to use.  Can you run a query like this one to get the dn syntax?

ldapsearch -h example.com -x -b "dc=example,dc=com" "uid=Administrator"?

[Joshua Arts]

Going to copy an answer I posted somewhere else in hopes that it may help someone out here.

This stuff can be tricky to configure because the Omniauth LDAP gem doesn't provide the greatest error messages. It could just be an error that you need to work out with your BASE or BIND_DN. You usually have to play around with it for a little bit unfortunately.

Make sure that you are reloading the environment each time you make changes to your .env file. For information on how to do this, check out the docs.

I also noticed you've set the host to be localhost. I'm not sure what machine this is referring to, but are you sure GreenLight (which is running in a Docker container on the BigBlueButton server) has access to it?

Hope this helps!

On Tuesday, January 30, 2018 at 1:22:46 AM UTC-5, Maksim Monakhov wrote:

[Williams Montilla]

Hi everybody!

I have a problem with my BigBlueButton server and LDAP autentication.

My conection between the LDAP server and Greenlight haven't problem but if you make changes in a user on the LDAP server, later, that user can't login again in Greenlight but if you undo the changes to the origin, the user can make login.

Somebody can help me with that? i need to make changes in the user and the user continue to login in Greenlight