Just for future reference... If anybody runs into this where your demo_connect
is successful but you cannot login to the webui and have selinux setup...
Don't forget this piece:
setsebool -P httpd_can_network_connect true
My WebUI is fully working with LDAP Authentication now (with a non-anonymous
binding setup...although not using TLS yet.)
Thanks again, Ruben. You set me off on the right path.
From: [email protected]
To: [email protected]
Subject: RE: WebUI LDAP Authentication
Date: Thu, 18 Jun 2009 21:39:07 +0000
> Just guessing, I never tried cobbler in combination with AD, but
> you're using the samaccountname attribute in your ldap search, but not
> in your cobbler settings.
>
> If I remember correctly, before 2003 R2 you had to extend your AD
> schema with posixAccount and inetOrgPerson objects. There should be
> lots of info on MSDN, I can't find it though.
>
> Ruben
Ruben,
That set off a lightbulb. I changed the ldap_search_prefix to be
'sAMAccountName' instead of 'uid' and now when using the demo_connect it
successfully authenticates. The website still doesn't appear to let me in but
at least I can move on to work on a new problem. Thanks!!
Rich
> _______________________________________________
> cobbler mailing list
> [email protected]
> https://fedorahosted.org/mailman/listinfo/cobbler
Lauren found her dream laptop. Find the PC that’s right for you.
_________________________________________________________________
Bing™ brings you maps, menus, and reviews organized in one place. Try it now.
http://www.bing.com/search?q=restaurants&form=MLOGEN&publ=WLHMTAG&crea=TEXT_MLOGEN_Core_tagline_local_1x1
_______________________________________________
cobbler mailing list
[email protected]
https://fedorahosted.org/mailman/listinfo/cobbler
