RE: Configuring LDAP

] Sent: Friday, December 01, 2017 2:59 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Fri, Dec 1, 2017 at 10:37 AM, mailto:harry.dev...@faa.gov>> wrote: OK I was able to get it to log in. Here’s what I changed in my guacamole.properties to make it work: ldap-search-bind

Re: Configuring LDAP

On Fri, Dec 1, 2017 at 10:37 AM, wrote: > OK I was able to get it to log in. Here’s what I changed in my > guacamole.properties to make it work: > > ldap-search-bind-dn:cn=”Directory Manager” > > ldap-user-base-dn:cn=users,cn=accounts,dc=example,dc=com > > > > So the user logs in fine, but in /v

Re: Configuring LDAP

8080-exec-6] WARN > o.a.g.auth.ldap.user.UserService - Could not query list of all users for > attribute "cn": Error while querying users. > > > > VERY close now! Thoughts? > > Harry > > > > *From:* Erik Berndt [mailto:erikber...@superiorpaving.net

RE: Configuring LDAP

46 [http-bio-8080-exec-6] WARN o.a.g.auth.ldap.user.UserService - Could not query list of all users for attribute "cn": Error while querying users. VERY close now! Thoughts? Harry From: Erik Berndt [mailto:erikber...@superiorpaving.net] Sent: Friday, December 01, 2017 12:19 PM To: user@guacamole.

Re: Configuring LDAP

On Mon, Nov 27, 2017 at 10:49 AM, wrote: > Here’s my current /etc/guacamole/guacamole.properties file: > > > > #MySQL properties > > mysql-hostname: localhost > > mysql-port:3306 > > mysql-database: guacdb > > mysql-username: guacuser > > mysql-password: guacadmin > > mysql-default-max-connection

Re: Configuring LDAP

...@superiorpaving.net On Fri, Dec 1, 2017 at 11:11 AM, wrote: > Just wondering if anyone has any ideas on how the LDAP is configured > below? This still isn’t working for me and I’d like to know why. > > > > Thanks, > > Harry > > > > *From:* Devine, Ha

RE: Configuring LDAP

Just wondering if anyone has any ideas on how the LDAP is configured below? This still isn’t working for me and I’d like to know why. Thanks, Harry From: Devine, Harry (FAA) Sent: Monday, November 27, 2017 1:49 PM To: user@guacamole.apache.org Subject: RE: Configuring LDAP Here’s my current

RE: Configuring LDAP

: Configuring LDAP Harry, you said you tried "modifying ldap-username-attribute to be cn=users,cn=accounts,dc=example,dc=com" - just wanted to confirm. Ldap-username-attribute should be an LDAP attribute name like cn. Could you post your complete (redacted) guacamole.properties as y

Re: Configuring LDAP

Harry, you said you tried "modifying ldap-username-attribute to be cn=users,cn=accounts,dc=example,dc=com" - just wanted to confirm. Ldap-username-attribute should be an LDAP attribute name like cn. Could you post your complete (redacted) guacamole.properties as you have it currently? Also, I saw

Re: Configuring LDAP

On Mon, Nov 27, 2017 at 10:02 AM, wrote: > OK, so I tried that, including modifying ldap-username-attribute to be > cn=users,cn=accounts,dc=example,dc=com, and now I get a 403 error in the > Developer Tools, and the following error in /var/log/messages: > > > > Nov 27 10:00:34 access server: 10:0

RE: Configuring LDAP

r 27, 2017 9:56 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 27, 2017 at 9:46 AM, mailto:harry.dev...@faa.gov>> wrote: Update: using port 389 and none for encryption, and I had to change the search DN to be just cn=Directory Manager. Now I get the following e

Re: Configuring LDAP

On Mon, Nov 27, 2017 at 9:46 AM, wrote: > Update: using port 389 and none for encryption, and I had to change the > search DN to be just cn=Directory Manager. Now I get the following error: > > > > Nov 27 09:42:01 access server: 09:42:01.909 [http-bio-8080-exec-6] WARN > o.a.g.a.l.Authentication

Re: Configuring LDAP

us] > *Sent:* Monday, November 27, 2017 9:27 AM > > > *To:* user@guacamole.apache.org > *Subject:* Re: Configuring LDAP > > > > Harry, if you are using ldap-port:636, you probably need to specify: > > ldap-encryption-method: ssl > > I believe the default is "n

RE: Configuring LDAP

From: Devine, Harry (FAA) Sent: Monday, November 27, 2017 9:32 AM To: user@guacamole.apache.org Subject: RE: Configuring LDAP OK, I just tried it again with both 389/none and 636/ssl for those parameters, and both times I get the following errors: Nov 27 09:30:31 access server: 09:30:31.838 [

RE: Configuring LDAP

nt: Monday, November 27, 2017 9:27 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP Harry, if you are using ldap-port:636, you probably need to specify: ldap-encryption-method: ssl I believe the default is "none" . Assuming you are able to temporarily configure your LDA

Re: Configuring LDAP

c=com > > ldap-username-attribute:cn > > ldap-group-base-dn:cn=groups,cn=accounts,dc=example,dc=com > > > > Thanks, > > Harry > > > > *From:* Jonathan Hankins [mailto:jhank...@homewood.k12.al.us] > *Sent:* Wednesday, November 22, 2017 1:41 PM > > >

RE: Configuring LDAP

-username-attribute:cn ldap-group-base-dn:cn=groups,cn=accounts,dc=example,dc=com Thanks, Harry From: Jonathan Hankins [mailto:jhank...@homewood.k12.al.us] Sent: Wednesday, November 22, 2017 1:41 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP Harry, I believe you need to fully

Re: Configuring LDAP

Restart tomcat > > > > Service tomcat restart.. > > > > Tail –f /var/log/messages > > > > > > Authenticated > > > > > > > > *From:* harry.dev...@faa.gov [mailto:harry.dev...@faa.gov] > *Sent:* Tuesday, November 21, 2017 2:01 PM >

RE: Configuring LDAP

Restart tomcat Service tomcat restart.. Tail –f /var/log/messages Authenticated From: harry.dev...@faa.gov [mailto:harry.dev...@faa.gov] Sent: Tuesday, November 21, 2017 2:01 PM To: user@guacamole.apache.org Subject: RE: Configuring LDAP OK, took me a little

RE: Configuring LDAP

@guacamole.apache.org Subject: RE: Configuring LDAP OK, took me a little bit to weed through some OpenLDAP config issues (it wasn’t installed on the server I have guacamole installed on; didn’t realize that at first), but I got the ldapsearch working. So I re-enabled the LDAP parameters and tried again

RE: Configuring LDAP

username-attribute="cn=users,cn=accounts,dc=my,dc=example,dc=com" ldap-group-base-dn="cn=groups,cn=accounts,dc=my,dc=example,dc=com" Ideas? Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Tuesday, November 21, 2017 9:20 AM To: user@guacamole.apache.org Subject: Re: Conf

Re: Configuring LDAP

On Tue, Nov 21, 2017 at 8:10 AM, wrote: > I set SELinux to permissive and put the LDAP extension back (its under > /usr/share/tomcat/.guacamole/extensions), restarted tomcat and guacd, and > try to log in using an LDAP user. I click Login and on the Network tab, it > shows tokens (/guacamole/api

Re: Configuring LDAP

(/guacamole/api/tokens) as having a “pending” status. Never > gets any further. > > > > Harry > > > > *From:* Nick Couchman [mailto:vn...@apache.org] > *Sent:* Monday, November 20, 2017 2:04 PM > *To:* user@guacamole.apache.org > *Subject:* Re: Configuring LDAP

RE: Configuring LDAP

gets any further. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 2:04 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 1:52 PM, mailto:harry.dev...@faa.gov>> wrote: We’re using Red Hat Enterprise Linux 7.4 with S

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 10:01 AM, Richard Lee wrote: > How can I leave this group? > > If you want to unsubscribe to the user@ list, send an email to user-unsubscr...@guacamole.apache.org and follow the instructions in the confirmation email. Be sure to send the email from the email address that

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 1:52 PM, wrote: > We’re using Red Hat Enterprise Linux 7.4 with SELinux set to enforcing. I > disabled the LDAP extension and just used MySQL for the guacadmin user and > could log in. I do see the following information in /var/log/messages: > > > This sounds like the se

RE: Configuring LDAP

issive. Did that a few weeks ago, so Guacamole is working for at least the local Admin user. Not for LDAP. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 1:25 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 1:06 P

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 1:06 PM, wrote: > /var/log/messages doesn’t show anything at all when I try the login. > Also, when I click Login, the area at the top of the Developer Tools window > (with the times in it 2000ms, 4000ms, etc.) updates, but the list of > javascript files that is accessed d

RE: Configuring LDAP

red, and it says that the Initiator is angular.js on line 9902. Thanks, Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 1:00 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 12:53 PM, mailto:harry.dev...@faa.gov>>

Re: Configuring LDAP

How can I leave this group? Richard Lee // Production Director // +44 203 627 6280 // www.streamgo.co.uk the streaming and online event experts On 20 November 2017 at 18:00, Nick Couchman wrote: > On Mon, Nov 20, 2017 at 12:53 PM, wrote: > >> Looks like I get a

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 12:53 PM, wrote: > Looks like I get a 403 when it tries to access /guacamole/api/tokens. > > > There will be an initial 403 that happens when the page is loaded (this prompts the login dialog to appear in the first place), but if you're getting a 403 after entering the cr

RE: Configuring LDAP

Looks like I get a 403 when it tries to access /guacamole/api/tokens. Harry From: Nick Couchman [mailto:vn...@apache.org] Sent: Monday, November 20, 2017 11:40 AM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Mon, Nov 20, 2017 at 8:10 AM, mailto:harry.dev...@faa.gov>> wr

Re: Configuring LDAP

On Mon, Nov 20, 2017 at 8:10 AM, wrote: > I use Chrome and I use the Developer Console all the time. I just tried > it again and got nothing at all in the console. I even had the > catalina.2017-11-20.log file open and got nothing in there either. Nothing > happens. > Great. What about on th

RE: Configuring LDAP

, November 17, 2017 1:17 PM To: user@guacamole.apache.org Subject: Re: Configuring LDAP On Thu, Nov 16, 2017 at 9:33 AM, mailto:harry.dev...@faa.gov>> wrote: Nothing at all. And the Guacamole screen never changes, as if the Login button doesn't work or is somehow dead. Hmmm...okay, this is

Re: Configuring LDAP

On Thu, Nov 16, 2017 at 9:33 AM, wrote: > Nothing at all. And the Guacamole screen never changes, as if the Login > button doesn't work or is somehow dead. > Hmmm...okay, this is odd. What browser are you using? If you're using Chrome, can you open the Developer Console and look for errors in t

Re: Configuring LDAP

Nothing at all. And the Guacamole screen never changes, as if the Login button doesn't work or is somehow dead. Thanks, Harry From: Nick Couchman Sent: Wednesday, November 15, 2017 7:59:36 PM To: u...@guacamole.incubator.apache.org Subject: Re: Config

Re: Configuring LDAP

On Wed, Nov 15, 2017 at 15:35 wrote: > Here’s the /var/log/messages data from right after I restarted Tomcat and > Guacamole: https://pastebin.com/YSwepbgk. This server is running RHEL > 7.4. > So, on line 94 the LDAP extension appears to be getting loaded, so that part is fine. Seems like it