Good afternoon, Have followed many guides (starting from the official documentation) and I am struggling to get LDAP Authentication with Active Directory working. The server itself can connect to LDAP via ldapsearch. The MySQL authentication is working a treat, but would like the LDAP working too with MySQL storing the connection information so I don't have to change the schemas.
This comes up in the Catalina log. DEBUG o.a.g.a.l.AuthenticationProviderService - Anonymous bind is not currently allowed by the LDAP authentication provider. and the guacamole.properties file is as follows: # Hostname and port of guacamole proxy guacd-hostname: localhost guacd-port: 4822 # Location to read extra .jar's from #lib-directory: /var/lib/tomcat8/webapps/guacamole/WEB-INF/classes #lib-directory: /etc/guacamole/extensions # Authentication provider class #auth-provider: org.apache.guacamole.auth.ldap.LDAPAuthenticationProvider # Properties used by BasicFileAuthenticationProvider #basic-user-mapping: /etc/guacamole/user-mapping.xml # LDAP properties ldap-hostname: <IP_Address> ldap-port: 389 ldap-user-base-dn: OU=Staff,OU=Domain Users,DC=MyDomain,DC=com ldap-serach-bind-dn: CN=Administrator,OU=Admins,OU=Domain Users,DC=MyDomain,DC=com ldap-search-bind-password: SetPassword ldap-username-attribute: sAMAccountName # MySQL properties mysql-hostname: localhost mysql-port: 3306 mysql-database: guacamole mysql-username: guacamole mysql-password: SetPassword Any help would be appreciated. -- View this message in context: http://apache-guacamole-incubating-users.2363388.n4.nabble.com/LDAP-Active-Directory-tp222.html Sent from the Apache Guacamole (incubating) - Users mailing list archive at Nabble.com.
