First sorry for my bad english I have configured a guacamole docker environment (vresion 1.1.0) that validates users in a LDAP server and stores connection settings in mysql.
I login in guacamole with the ldap user of the binddn. This user only has read permissions of the ldap directory. I can see the ldap users, also I can see the ldap groups, but I cannot see the ldap users that are in the ldap groups, and guacamole don't use this information. Only I can Have I configured something wrong? Is it not possible to do it? I can only use the groups from mysql? the LDAP server has 225000 accounts. I would like not to have to reassign users to groups Sample Ldap info ------------------------- LDAP_HOSTNAME=guacamole-ldap LDAP_PORT=389 LDAP_ENCRIPTION_METHOD=none LDAP_USER_BASE_DN=ou=users,o=sids LDAP_GROUP_BASE_DN=ou=groups,o=sids LDAP_SEARCH_BIND_DN=cn=proxyUser,ou=users,o=sids LDAP_SEARCH_BIND_PASSWORD=proxyPassword LDAP_USER_SEARCH_FILTER=(|(objectClass=organizationalRole)(objectClass=posixAccount)) LDAP_MEMBER_ATTRIBUTE=memberUid LDAP_USERNAME_ATTRIBUTE=uid,cn LDAP_USER_ATRIBUTES=displayName,mail Sample Group Info -------------------------- dn: cn=work_sid_adm,ou=Sabadell,ou=groups,o=sids objectClass: posixGroup objectClass: sambaGroupMapping cn: work_sid_adm gidNumber: 1565 sambaSID: S-1-5-21-2983749975-1925441612-1994843381-4131 sambaGroupType: 2 displayName: work_sid_adm memberUid: 0000736 memberUid: 2040198 memberUid: 0001300 memberUid: sid memberUid: 2080414 memberUid: 2040823 memberUid: 1149785 memberUid: 1104561 -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
