[
https://issues.apache.org/jira/browse/GUACAMOLE-1154?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17178116#comment-17178116
]
Mike Jumper commented on GUACAMOLE-1154:
----------------------------------------
[~Dread Marvaz], as [~vnick] describes above, the [[email protected]
mailing list|http://guacamole.apache.org/support/#mailing-lists] is the place
to ask questions and receive help. This is a bug tracker, not a help forum, and
[it is unlikely that something as fundamental as use of LDAP with AD is
broken|http://guacamole.apache.org/faq/#probably-not-a-bug]. Using LDAP with AD
is one of the most common configurations for a production Guacamole instance,
and the community can help you figure out what you're doing wrong on the
mailing list.
The configuration you've provided above is hard to read, but it looks like
there are layers of misunderstanding here:
* There is no {{/etc/GUACAMOLE_HOME}}. The text {{GUACAMOLE_HOME}} is used
within the documentation as a placeholder for the directory containing
Guacamole configuration files, which would be {{/etc/guacamole}} by default.
* You have you the .war file (a binary web application) within
{{/etc/guacamole}} (a configuration directory), which does not make sense.
We have no control over third-party tutorials, and quite a few of those have
incorrect instructions which lead users toward bad practice, use of
configuration properties that don't exist, creation of symbolic links that
aren't needed, placement of files/directories in nonsensical locations, etc. If
you have followed a bunch of tutorials _and_ the manual, I strongly recommend
_not_ following those tutorials and following _only_ the manual. If you don't
understand something in the manual, or you followed the manual and things
aren't working as expected, come to the mailing list and we'll help you sort
things out.
> Impossible to connect LDAP with AD Apache Guacamole
> ---------------------------------------------------
>
> Key: GUACAMOLE-1154
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1154
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole-auth-jdbc-mysql, guacamole-auth-ldap
> Affects Versions: 1.1.0
> Reporter: Martin Vazquez
> Priority: Major
>
> Hi guys, im burned out
> Been struggling with this for 3 days. and so far nothing.
> Im running Guacamole on Debian 10 with Nginx as a reverse proxy, working fine.
> The thing is, it's impossible to auth LDAP with AD.
> I have two directories (dont know if its good or bad, just followed official
> doc and other tutorials)
> /etc/GUACAMOLE_HOME/
> /lib
> /extensions: guacamole-auth-jdbc-mysql-1.1.0.jar /
> guacamole-auth-ldap-1.1.0.jar / schema
> /etc/guacamole/
> /extensions guacamole-auth-jdbc-mysql-1.1.0.jar guacamole-auth-ldap-1.1.0
> guacamole-auth-ldap-1.1.0.jar guacamole-auth-ldap-1.1.0.tar.gz
> [guacamole.properties|https://guacamole.properties/]
> guacamole.war
> /lib
> logback.xml
> user-mapping.xml
> In [guacamole.properties|https://guacamole.properties/] I configured LDAP
> properties with these params
> # LDAP properties
> ldap-hostname: ad domain
> ldap-port: 389
> ldap-user-base-dn:CN=Users,DC=domain,DC=local
> ldap-username-attribute: CN
> ldap-config-base-dn: CN=Users,DC=domain,DC=local
> ldap-username-attribute: sAMAccountName
> It only allows me to log in with guacadmin/guacadmin.
> It's driving me nuts!! I dont know what else to read or where to search
> If someone have any clue where to begin it'll be much much appreciated!
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
