On Mon, Feb 17, 2020 at 7:28 AM Pluess, Tobias <[email protected]> wrote:
> Hi, > I have sucessfully installed Guacamole on a Centos 7 server. I can log > in as user "guacadmin", create connections using RDP or SSH, and > connect to different hosts. So far it works fine. > > However, I now would like to use LDAPS for use authentication. We do > have an Active Directory which can be accessed via LDAPS and I have > sucessfully managed to set up LDAPS authentication for some other > services we use (Gitea, Nextcloud). On those servers it works fine, but > I cannot make it work with Guacamole! > > I use Guacamole 1.1.0 with the Guacamole LDAP authentication extension. > Following is my LDAPS configuration in the guacamole.properties file: > > ldap-hostname: ldap.server.domain.ch > ldap-port: 636 > ldap-encryption-method: ssl > ldap-search-bind-dn: [email protected] > ldap-search-bind-password: (some password) > ldap-user-base-dn: ou=MYOU,dc=server,dc=domain,dc=ch > ldap-username-attribute: sAMAccountName > ldap-user-search-filter: (samAccountType=805306368) > > > Is your LDAP server certificate trusted within the Java framework that is running Tomcat - that is, have you imported it into cacerts? -Nick
