RE: Issue configuring LDAP

Harry From: Mike Jumper Sent: Wednesday, May 20, 2020 4:18 PM To: user@guacamole.apache.org Subject: Re: Issue configuring LDAP On Wed, May 20, 2020 at 1:06 PM Devine, Harry (FAA) mailto:harry.dev...@faa.gov.invalid>> wrote: We have 3 servers all configured this way (I’ve redacted sensitive

Re: Issue configuring LDAP

On Wed, May 20, 2020 at 1:06 PM Devine, Harry (FAA) wrote: > We have 3 servers all configured this way (I’ve redacted sensitive > information); 2 work and 1 doesn’t: > > > > #LDAP properties > > ldap-hostname:ldapserver > > ldap-port:389 > > ldap-encryption-method:none > >

RE: Issue configuring LDAP

d:password ldap-user-base-dn:cn=users,cn=accounts,dc=example,dc=com ldap-username-attribute:uid ldap-group-base-dn:cn=groups,cn=accounts,dc=example,dc=com Harry From: Mike Jumper Sent: Wednesday, May 20, 2020 4:01 PM To: user@guacamole.apache.org Subject: Re: Issue configuring LDAP On Wed, Ma

Re: Issue configuring LDAP

On Wed, May 20, 2020 at 12:51 PM Devine, Harry (FAA) wrote: > We have a server with version 1.0.0 installed on it. We can’t seem to log > in via LDAP at all. We always get the following error: > > > > May 20 15:34:59 armt server: 15:34:59.213 [http-bio-8080-exec-5] ERROR >

Issue configuring LDAP

We have a server with version 1.0.0 installed on it. We can't seem to log in via LDAP at all. We always get the following error: May 20 15:34:59 armt server: 15:34:59.213 [http-bio-8080-exec-5] ERROR o.a.g.a.ldap.LDAPConnectionService - Unable to connect to LDAP server: Connect Error May 20

RE: Configuring LDAP

] Sent: Friday, December 01, 2017 2:59 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Fri, Dec 1, 2017 at 10:37 AM, <harry.dev...@faa.gov<mailto:harry.dev...@faa.gov>> wrote: OK I was able to get it to log in. Here’s what I changed in my guacamole.properties to make i

RE: Configuring LDAP

Just wondering if anyone has any ideas on how the LDAP is configured below? This still isn’t working for me and I’d like to know why. Thanks, Harry From: Devine, Harry (FAA) Sent: Monday, November 27, 2017 1:49 PM To: user@guacamole.apache.org Subject: RE: Configuring LDAP Here’s my current

RE: Configuring LDAP

: Configuring LDAP Harry, you said you tried "modifying ldap-username-attribute to be cn=users,cn=accounts,dc=example,dc=com" - just wanted to confirm. Ldap-username-attribute should be an LDAP attribute name like cn. Could you post your complete (redacted) guacamole.properties a

Re: Configuring LDAP

Harry, you said you tried "modifying ldap-username-attribute to be cn=users,cn=accounts,dc=example,dc=com" - just wanted to confirm. Ldap-username-attribute should be an LDAP attribute name like cn. Could you post your complete (redacted) guacamole.properties as you have it currently? Also, I saw

RE: Configuring LDAP

r 27, 2017 9:56 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 27, 2017 at 9:46 AM, <harry.dev...@faa.gov<mailto:harry.dev...@faa.gov>> wrote: Update: using port 389 and none for encryption, and I had to change the search DN to be just cn=Directo

Re: Configuring LDAP

On Mon, Nov 27, 2017 at 9:46 AM, wrote: > Update: using port 389 and none for encryption, and I had to change the > search DN to be just cn=Directory Manager. Now I get the following error: > > > > Nov 27 09:42:01 access server: 09:42:01.909 [http-bio-8080-exec-6] WARN >

Re: Configuring LDAP

nk...@homewood.k12.al.us] > *Sent:* Monday, November 27, 2017 9:27 AM > > > *To:* user@guacamole.apache.org > *Subject:* Re: Configuring LDAP > > > > Harry, if you are using ldap-port:636, you probably need to specify: > > ldap-encryption-method: ssl > > I bel

RE: Configuring LDAP

From: Devine, Harry (FAA) Sent: Monday, November 27, 2017 9:32 AM To: user@guacamole.apache.org Subject: RE: Configuring LDAP OK, I just tried it again with both 389/none and 636/ssl for those parameters, and both times I get the following errors: Nov 27 09:30:31 access server: 09:30:31.838 [

RE: Configuring LDAP

nt: Monday, November 27, 2017 9:27 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP Harry, if you are using ldap-port:636, you probably need to specify: ldap-encryption-method: ssl I believe the default is "none" . Assuming you are able to temporarily configure your LDA

Re: Configuring LDAP

-user-base-dn:dc=example,dc=com > > ldap-username-attribute:cn > > ldap-group-base-dn:cn=groups,cn=accounts,dc=example,dc=com > > > > Thanks, > > Harry > > > > *From:* Jonathan Hankins [mailto:jhank...@homewood.k12.al.us] > *Sent:* Wednesday, November 22,

RE: Configuring LDAP

-username-attribute:cn ldap-group-base-dn:cn=groups,cn=accounts,dc=example,dc=com Thanks, Harry From: Jonathan Hankins [mailto:jhank...@homewood.k12.al.us] Sent: Wednesday, November 22, 2017 1:41 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP Harry, I believe you need to fully

Re: Configuring LDAP

Restart tomcat > > > > Service tomcat restart.. > > > > Tail –f /var/log/messages > > > > > > Authenticated > > > > > > > > *From:* harry.dev...@faa.gov [mailto:harry.dev...@faa.gov] > *Sent:* Tuesday, November 21, 2017 2:01 PM >

RE: Configuring LDAP

@guacamole.apache.org Subject: RE: Configuring LDAP OK, took me a little bit to weed through some OpenLDAP config issues (it wasn’t installed on the server I have guacamole installed on; didn’t realize that at first), but I got the ldapsearch working. So I re-enabled the LDAP parameters and tried again

RE: Configuring LDAP

username-attribute="cn=users,cn=accounts,dc=my,dc=example,dc=com" ldap-group-base-dn="cn=groups,cn=accounts,dc=my,dc=example,dc=com" Ideas? Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Tuesday, November 21, 2017 9:20 AM To: user@guacamole.apache.org Subject: Re:

RE: Configuring LDAP

gets any further. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 2:04 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 1:52 PM, <harry.dev...@faa.gov<mailto:harry.dev...@faa.gov>> wrote: We’re using Red Ha

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 10:01 AM, Richard Lee wrote: > How can I leave this group? > > If you want to unsubscribe to the user@ list, send an email to user-unsubscr...@guacamole.apache.org and follow the instructions in the confirmation email. Be sure to send the email

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 1:52 PM, wrote: > We’re using Red Hat Enterprise Linux 7.4 with SELinux set to enforcing. I > disabled the LDAP extension and just used MySQL for the guacadmin user and > could log in. I do see the following information in /var/log/messages: > > >

RE: Configuring LDAP

sive. Did that a few weeks ago, so Guacamole is working for at least the local Admin user. Not for LDAP. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 1:25 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 1:06 PM, <harry.d

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 1:06 PM, wrote: > /var/log/messages doesn’t show anything at all when I try the login. > Also, when I click Login, the area at the top of the Developer Tools window > (with the times in it 2000ms, 4000ms, etc.) updates, but the list of > javascript

RE: Configuring LDAP

is in red, and it says that the Initiator is angular.js on line 9902. Thanks, Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 1:00 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 12:53 PM, <harry.dev...@faa.gov<mailto:har

Re: Configuring LDAP

How can I leave this group? Richard Lee // Production Director // +44 203 627 6280 // www.streamgo.co.uk the streaming and online event experts On 20 November 2017 at 18:00, Nick Couchman wrote: > On Mon, Nov 20, 2017 at 12:53 PM,

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 12:53 PM, wrote: > Looks like I get a 403 when it tries to access /guacamole/api/tokens. > > > There will be an initial 403 that happens when the page is loaded (this prompts the login dialog to appear in the first place), but if you're getting a

RE: Configuring LDAP

Looks like I get a 403 when it tries to access /guacamole/api/tokens. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 11:40 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 8:10 AM, <harry.dev...@faa.gov<mailto:har

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 8:10 AM, wrote: > I use Chrome and I use the Developer Console all the time. I just tried > it again and got nothing at all in the console. I even had the > catalina.2017-11-20.log file open and got nothing in there either. Nothing > happens. >

RE: Configuring LDAP

, November 17, 2017 1:17 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Thu, Nov 16, 2017 at 9:33 AM, <harry.dev...@faa.gov<mailto:harry.dev...@faa.gov>> wrote: Nothing at all. And the Guacamole screen never changes, as if the Login button doesn't work or is somehow dead.

Re: Configuring LDAP

ubject: Re: Configuring LDAP On Wed, Nov 15, 2017 at 15:35 <harry.dev...@faa.gov<mailto:harry.dev...@faa.gov>> wrote: Here’s the /var/log/messages data from right after I restarted Tomcat and Guacamole: https://pastebin.com/YSwepbgk. This server is running RHEL 7.4. So, on line 94