Hi,
I currently use the Guacamole Docker container and have recently setup an LDAP server for authentication on my network which is being used by multiple services and would also like to use the MySQL integration as well as it makes the managing of users much nicer from the administration end. However I require authentication to only be granted when a user is in the LDAP server. If a user exists within the MySQL authentication but not in LDAP I do not want the user to be authenticated.
Currently it appears that the user can authenticate through either method and that doesn't achieve what I am looking for with regards to the LDAP server having the final say. Some reading through the documentation indicated that by using a parameter "mysql-user-required: true" within the guacamole.properties file, it forced users to exist in both the MySQL and LDAP repositories.
However this does not appear to work for the docker version of Guacamole as there is no mechanism currently of taking that parameter in and placing it within the guacamole.properties file as there is for the LDAP and MySQL parameters.
Has anyone else run into this issue ? Are there plans to add mysql-user-required as a parameter for the docker container ?
Any advice would be appreciated.
I currently use the Guacamole Docker container and have recently setup an LDAP server for authentication on my network which is being used by multiple services and would also like to use the MySQL integration as well as it makes the managing of users much nicer from the administration end. However I require authentication to only be granted when a user is in the LDAP server. If a user exists within the MySQL authentication but not in LDAP I do not want the user to be authenticated.
Currently it appears that the user can authenticate through either method and that doesn't achieve what I am looking for with regards to the LDAP server having the final say. Some reading through the documentation indicated that by using a parameter "mysql-user-required: true" within the guacamole.properties file, it forced users to exist in both the MySQL and LDAP repositories.
However this does not appear to work for the docker version of Guacamole as there is no mechanism currently of taking that parameter in and placing it within the guacamole.properties file as there is for the LDAP and MySQL parameters.
Has anyone else run into this issue ? Are there plans to add mysql-user-required as a parameter for the docker container ?
Any advice would be appreciated.
James
