GitHub user ffslcschools added a comment to the discussion: LDAP troubleshooting
Configuration is similar to what rajujith posted above and I was focusing on the gui. `keytool`-genkey -alias ldaps -keyalg RSA -keystore /etc/cloudstack/management/daps.jks -keysize 2048 keytool -importcert -file /etc/cloudstack/management/ad_certificates/<certName>.cer -keystore /etc/cloudstack/management/ldaps.jks -alias "ldaps" chown root:cloud /etc/cloudstack/management/ldaps.jks` I thought I was changing settings in the Domains section but now I don't know what is what. Here is what I was using in the sub domains ROOT / test, ROOT / test 1 and so on. ldap.basedn dc=test,dc=com ldap.bind.password ldap.bind.principal <fully distinguished user name cn=user,dc=test,dc=com> ldap.email.attribute mail ldap.firstname.attribute givenname ldap.group.object groupOfUniqueName ldap.group.user.uniquemember member ldap.lastname.attribute sn ldap.nested.groups.enable on ldap.provider microsoftad ldap.search.group.principle <fully distinguished group name cn=groupname,dc=test,dc=com> ldap.truststore /etc/cloudstack/management/<keystorname> ldap.truststore.password ldap.user.memberof.attribute memberof ldap.user.object user ldap.username.attribute samaccountname GitHub link: https://github.com/apache/cloudstack/discussions/9899#discussioncomment-12351819 ---- This is an automatically sent email for users@cloudstack.apache.org. To unsubscribe, please send an email to: users-unsubscr...@cloudstack.apache.org
