Hallo Jochen, thanks for the quick help.
we use Graylog 2.1.2 (virt. Appliance). Now I found the button "LDAP Mapping". With this it is possible to connect the roles with the LDAP groups. (Was this botton somewhere else in the webinterface before?) But there is still the issue with the duplicate user entries. Regards, Dietmar On Friday, November 18, 2016 at 9:34:15 AM UTC+1, Jochen Schalanda wrote: > > Hi Dietmar, > > which version of Graylog are you using exactly? > > This issue (or at least a very similar one) has been fixed in Graylog > 2.1.0, see https://github.com/Graylog2/graylog2-server/pull/2529 for > details. > > Cheers, > Jochen > > On Friday, 18 November 2016 09:04:25 UTC+1, Dietmar Schurr wrote: >> >> Hello, >> >> Graylog works great so far, and we use AD to authenticate the users. >> >> With 'group mapping' in the LDAP settings we have various departments as >> groups. >> >> Once a specific user logs in, we map this user to a specific role with >> the appropriate access rights (for strams and dashboards). >> >> That's fine, but graylog seems randomly to "forget" this mapping, which >> means, that this user looses all rights which are connected with the >> specific role. The user falls back to the default, which means almost no >> rights. What's wrong here? >> >> Another problem ist, that, the user sometimes use small, and somtimes >> capital letters to log in (always with the AD account). Graylog creates two >> user accounts like MUELLER01 and mueller01. >> Is there a way to merge those accounts? Is there a way to force graylog >> to do a LDAP query always with uppercase (or lowercase) letters? >> >> Thanks in advance for your help. >> >> Dietmar >> > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/46a82a18-4ba9-4aa5-817f-4050eb8a0cec%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
