Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

dap_group_mode=NONE >>>> >>>> https://github.com/apache/openmeetings/blob/master/openmeetings-web/src/main/webapp/data/conf/om_ldap.cfg#L78 >>>> >>>> <https://github.com/apache/openmeetings/blob/master/openmeetings-web/src/main/webapp/data/conf/om_ld

Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

/om_ldap.cfg#L78 >>> >>> If I do that, then it says "group associations will be ignored", which >>> is not what I want. >>> >>> I want to control group membership with LDAP, but not show up every >>> group the user is a member of, as

Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

78 >> >> If I do that, then it says "group associations will be ignored", which is >> not what I want. >> >> I want to control group membership with LDAP, but not show up every group >> the user is a member of, as most of the groups in LDAP have nothing

Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

cfg#L78 > > If I do that, then it says "group associations will be ignored", which is > not what I want. > > I want to control group membership with LDAP, but not show up every group > the user is a member of, as most of the groups in LDAP have nothing to do > with Op

Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

meetings-web/src/main/webapp/data/conf/om_ldap.cfg#L78> If I do that, then it says "group associations will be ignored", which is not what I want. I want to control group membership with LDAP, but not show up every group the user is a member of, as most of the groups in LDAP have not

Re: All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

/main/webapp/data/conf/om_ldap.cfg#L97 On Wed, 13 Jan 2021 at 04:34, Chris Clemson wrote: > Hi everyone, > > I have configured LDAP authentication, which works, and I get a list of > groups that my user is a member of. > > However, each LDAP group becomes a tab in "Privat

All LDAP Groups of a user are showing up OpenMeetings, whether they are used or not

Hi everyone, I have configured LDAP authentication, which works, and I get a list of groups that my user is a member of. However, each LDAP group becomes a tab in "Private Rooms", even though I have only configured one room to be allocated to a group (and all the other tabs are comple

Re: LDAP users - restricted access Solution

Hello Filip, On Thu, 7 Jan 2021 at 02:21, Filip Žák wrote: > Hello, > recently I was asking if it is possible to restrict access for LDAP users > only for some and in specific time. I worked on it by myself and I want to > offer a solution. If you want you can implement it in

LDAP users - restricted access Solution

Hello, recently I was asking if it is possible to restrict access for LDAP users only for some and in specific time. I worked on it by myself and I want to offer a solution. If you want you can implement it in the official version. So here it is: 1. I found java class */openmeetings-core/src/main

Re: OpenMeetings - LDAP restrict access

Again: please do not write personal emails, write to the user@ list instead On Wed, 23 Dec 2020 at 18:49, Filip Žák wrote: > Thank you. But I also need that in specific time could log in specific > users. Is it somehow possible? > Not sure if it is possible to set some sort of LDAP

Re: OpenMeetings - LDAP restrict access

ead (in TO address) > https://openmeetings.apache.org/mailing-lists.html (please subscribe > first) > > On Tue, 22 Dec 2020 at 21:12, Filip Žák wrote: > >> Hello, >> my name is Filip and I am using OpenMeetings in my bachelor project. >> > > welcome to the list :) > > >

Re: OpenMeetings - LDAP restrict access

, Filip Žák wrote: Hello, my name is Filip and I am using OpenMeetings in my bachelor project. welcome to the list :) I have problem that I need to solve. So I am using school LDAP server to log in but there is problem that school LDAP server has thousands users from all faculties

Re: OpenMeetings - LDAP restrict access

chelor project. > welcome to the list :) > I have problem that I need to solve. So I am using school LDAP server to > log in but there is problem that school LDAP server has thousands users > from all faculties and all teachers. I would like to have restricted access > only for some stud

RE: strange LDAP error.

[mailto:solomax...@gmail.com] Envoyé : 2 juin 2020 22:22 À : Openmeetings user-list Objet : Re: strange LDAP error. Hello Martin, On Tue, 2 Jun 2020 at 18:10, Chamberland, Martin mailto:martin.chamberl...@fadq.qc.ca>> wrote: [cid:image001.jpg@01D63978.2B494850] Yesterday we try to change in the om_ld

Re: strange LDAP error.

me=%s) > > > > First, it’s not connecting now using a LDAP users. > > We try going back to the old parameter and now it’s not connecting neither > and we receive this error in the catalina.out logs file. > > > > ERROR 06-01 16:03:07.887 o.a.w.DefaultExceptionMapper:73 [

strange LDAP error.

[cid:banner1.jpg] Yesterday we try to change in the om_ldap.cfg file this parameter. #ldap_search_query=(userPrincipalName=%s) ldap_search_query=(sAMAccountName=%s) First, it's not connecting now using a LDAP users. We try going back to the old parameter and now it's not connecting n

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Picture as binary data will work in 5.0 m4+ :)) (from mobile, sorry for typos) On Tue, May 19, 2020, 14:44 Ninnig, Alexander < alexander.nin...@rechnungshof.rlp.de> wrote: > Hello Maxim and thank you very much for all your support, > > after I did BOTH > > 1) cre

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Hello Maxim and thank you very much for all your support, after I did BOTH 1) create LDAP mapping with full picture URL (and check what in DB and UI after LDAP login) 2) since image is empty I guess it is dropped if mapping is commented out in this case please specify

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Hello Alex, you can use any DB query tool including command line :) Can you please do the tests one by one? :)) 1) create LDAP mapping with full picture URL (and check what in DB and UI after LDAP login) 2) since image is empty I guess it is dropped if mapping is commented out in this case

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

] profile.png This one displays a user-picture (local account). My LDAP-user-account has the line: pictureuri varchar(255)[empty dropdown-field] [checked checkbox] This one displays the questionmark-profilepicture. I tried to enter "profile.png" and save this (via phpMyAdmin),

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

ff: AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts) Sorry, I have to ask, because I haven’t done this so far: I can check what’s stored in the DB via phpMyAdmin? Can I install phpMyAdmin without messing with OpenMeetings? I never looked into MariaDB, so I have to star

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

: Openmeetings user-list Betreff: Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts) On Mon, 18 May 2020 at 20:06, Ninnig, Alexander mailto:alexander.nin...@rechnungshof.rlp.de>> wrote: Hello Maxim, ok, well, so that sounds cool. I wouldn't mind doing that manual

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

tings just displays an "x" (like when > an image is not linked correctly in website). > Can you check what is stored in the DB? > In my om_ldap.cfg, there is a parameter called , > but as far as I understand this is a picture to use for ALL accounts, who > don

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

ar as I understand this is a picture to use for ALL accounts, who don't have a picture provided by the ldap-connection. Option 2 is to manually copy my userpictures as "profile.png" in the right profile-folder. What did you mean by "and comment-out LDAP mapping"? Just comm

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Or in other words: I have to wait for a stable version of OpenMeetings 5? > Without being a pain, is there a timeline for the stable version of OM5? > I really hope it will be next version ETA depends on issues reported and their severity :( > > > > Or is there another way to

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Hello Maxim, so, I don't have to make more tests - it just will not work, right? Or in other words: I have to wait for a stable version of OpenMeetings 5? Without being a pain, is there a timeline for the stable version of OM5? Or is there another way to provide pictures for ldap-accoun

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

please read my previous answer On Mon, 18 May 2020 at 19:00, Ninnig, Alexander < alexander.nin...@rechnungshof.rlp.de> wrote: > Hello, > > I enabled debug-mode for ldap-connections and checked the log. > > AD-Binding works, AD-query also works, there is exactly one hit, th

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Hello, I enabled debug-mode for ldap-connections and checked the log. AD-Binding works, AD-query also works, there is exactly one hit, the log displays like all my AD-attributes. After that, the log shows errors - and "caused at" shows: "Data truncation: Data too long for col

Re: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

y be an important information): > One DOESN'T get "Internal Error" if there is no AD-Photo provided. > So all users with no picture stored in AD can login. > The second I save or > or AND > try to login with a an LDAP-user-account, that has an image stored in AD, I >

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

actually be an important information): One DOESN'T get "Internal Error" if there is no AD-Photo provided. So all users with no picture stored in AD can login. The second I save or or AND try to login with a an LDAP-user-account, that has an image stored in AD, I get "Interna

AW: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

18. Mai 2020 10:40 An: user@openmeetings.apache.org Betreff: OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts) Hello, we are using OpenMeetings 4.0.10 in our productive environment. LDAP-Configuration (om_ldap.cfg) works fine, except for getting thumbnails/pictures sto

OM 4.0.10, AD-Pictures (or: how can I provide pictures for LDAP-accounts)

Hello, we are using OpenMeetings 4.0.10 in our productive environment. LDAP-Configuration (om_ldap.cfg) works fine, except for getting thumbnails/pictures stored in Active Directory. If I uncomment the line and save the config-file, I cannot login anymore with my Active-Directory-account

OpenMeeting 5.0.0-M4, import AD-users using LDAP-connection and admin.sh

Hi again, since the ldap-connection works fine, I was trying to import my users, using this connection. I was following the instructions from https://openmeetings.apache.org/LdapAndADS.html. Basically, I just started the test-import (without really importing), using the command sudo

AW: OpenMeeting 5.0.0-M4, LDAP-connection recognizes "Deutschland" as "Andorra"

://rechnungshof.rlp.de/ -Ursprüngliche Nachricht- Von: Rohrbach, Gerald Gesendet: Mittwoch, 6. Mai 2020 15:26 An: user@openmeetings.apache.org Betreff: AW: OpenMeeting 5.0.0-M4, LDAP-connection recognizes "Deutschland" as "Andorra" Alexander, if I remember right you need to use c in

AW: OpenMeeting 5.0.0-M4, LDAP-connection recognizes "Deutschland" as "Andorra"

:09 An: user@openmeetings.apache.org Betreff: OpenMeeting 5.0.0-M4, LDAP-connection recognizes "Deutschland" as "Andorra" Hi, I managed to get a working LDAP-connection. But OpenMeetings gets the country wrong. All my users have the country "Deutschland", which i

OpenMeeting 5.0.0-M4, LDAP-connection recognizes "Deutschland" as "Andorra"

Hi, I managed to get a working LDAP-connection. But OpenMeetings gets the country wrong. All my users have the country "Deutschland", which is a drop-down-menue in Active Directory, so there's no chance of misspelling. This AD-attribute is "co". In my om_ldap.conf,

Re: LDAP configuration

24 K. Kamhamea wrote: >> >>> Hello, >>> There is a bug in the description of administration > LDAP >>> >>> It says the config file has to be uploaded to the conf directory >>> >>> [The config files are in the folder webapps/openmeetings/co

Re: LDAP configuration

> > On Sat, May 2, 2020, 15:24 K. Kamhamea wrote: > >> Hello, >> There is a bug in the description of administration > LDAP >> >> It says the config file has to be uploaded to the conf directory >> >> [The config files are in the folder webapps/openmeet

Re: LDAP configuration

On Sat, May 2, 2020, 15:24 K. Kamhamea wrote: > Hello, > There is a bug in the description of administration > LDAP > > It says the config file has to be uploaded to the conf directory > > [The config files are in the folder webapps/openmeetings/conf. You need > to manu

AW: LDAP configuration

There is a new documentation: https://cwiki.apache.org/confluence/display/OPENMEETINGS/Tutorials+for+installing+OpenMeetings+and+Tools Gerald Von: K. Kamhamea [mailto:kamha...@googlemail.com] Gesendet: Samstag, 2. Mai 2020 10:24 An: user@openmeetings.apache.org Betreff: LDAP configuration

LDAP configuration

Hello, There is a bug in the description of administration > LDAP It says the config file has to be uploaded to the conf directory [The config files are in the folder webapps/openmeetings/conf. You need to manually upload the files to this folder. Changes to the config file are immediat

Re: LDAP problems (double users creation)

Hello Martin, I'll try to check if it is reproducible to me :) On Fri, 1 May 2020 at 03:32, Chamberland, Martin < martin.chamberl...@fadq.qc.ca> wrote: > > Hi there, > > > > We face a bug with OpenMeeting 5.0.0M4 > > We where using it correctly for co

LDAP problems (double users creation)

[cid:banner1.jpg] Hi there, We face a bug with OpenMeeting 5.0.0M4 We where using it correctly for couple of days with LDAP connectivity, working well. We decide to desactivate the LDAP authentication for one day (test purpose), remove checkbox only in the settings. >From when we reactiv

Re: LDAP users multiple creation

; > > > > > I repeat the process of upgrade (from a snapshot VM machine XEN) and now > > it’s working. > > > > LDAP user can connect and are not recreate multiple time. > > > > > > > > I probably forget to drop the database in the pr

Re: LDAP Group management question

On Thu, 23 Apr 2020 at 16:56, Thomas wrote: > > Hello, > > possibly my little Problem is "by Design", but I've found no > Documentation or Comment, so I'm a bit lost. > > I have Openmeetings 5.0.0-M3 up and running with OpenLDAP as > Authentification

Re: LDAP users multiple creation

Great news :) Will double-check the import, it shouldn't create duplicates ... On Thu, 23 Apr 2020 at 18:07, Chamberland, Martin wrote: > > > > I repeat the process of upgrade (from a snapshot VM machine XEN) and now it’s > working. > > LDAP user can connect and are

RE: LDAP users multiple creation

[cid:banner1.jpg] I repeat the process of upgrade (from a snapshot VM machine XEN) and now it’s working. LDAP user can connect and are not recreate multiple time. I probably forget to drop the database in the process of upgrade the first try. Martin Chamberland Technicien en informatique La

Re: LDAP users multiple creation

e001.jpg@01D618A2.D56E1BE0] > > *De :* Maxim Solodovnik [mailto:solomax...@gmail.com] > *Envoyé :* 22 avril 2020 11:35 > *À :* Openmeetings user-list > *Objet :* Re: LDAP users multiple creation > > > > What were your steps to upgrade? > > Did you drop old DB? > >

LDAP Group management question

Hello, possibly my little Problem is "by Design", but I've found no Documentation or Comment, so I'm a bit lost. I have Openmeetings 5.0.0-M3 up and running with OpenLDAP as Authentification Server. On Login new Users are created, LDAP Groups in appropriate OU are assigne

RE: LDAP users multiple creation

erl...@fadq.qc.ca> www.fadq.qc.ca<http://www.fadq.qc.ca> [cid:image001.jpg@01D618A2.D56E1BE0] De : Maxim Solodovnik [mailto:solomax...@gmail.com] Envoyé : 22 avril 2020 11:35 À : Openmeetings user-list Objet : Re: LDAP users multiple creation What were your steps to upgrade? Did you drop o

Re: LDAP users multiple creation

What were your steps to upgrade? Did you drop old DB? LDAP users can be created as you describe it BUT only in case you manage to create duplicate LDAP user somehow i need steps :) On Wed, 22 Apr 2020 at 22:12, Chamberland, Martin < martin.chamberl...@fadq.qc.ca> wrote: > > Afte

Re: problems with 5.0.0 M4 (LDAP users)

Usually users in OM admin has 1-1 correlation with DB How are searching in DB/OM? On Wed, 22 Apr 2020 at 21:44, Chamberland, Martin < martin.chamberl...@fadq.qc.ca> wrote: > [image: cid:banner1.jpg] > > > > Now, we are having some issue with users that were create(LDAP

LDAP users multiple creation

[cid:banner1.jpg] After going from 5.0.0M3 to 5.0.0 M4, import database (include LDAP users). We reconfigure LDAP and put back LDAP.cfg (we lost it in the upgrade process). Now, each time we log in we LDAP user, it seem to recreate a new one, with a new ID. So we cannot make any change to

problems with 5.0.0 M4 (LDAP users)

[cid:banner1.jpg] Now, we are having some issue with users that were create(LDAP) before the update. They lost ADMIN rights. If I look directly inside the Database (phpmyadmin), I can see it only once. But if I look from OpenMeeting web interface, there is 7 times the same user. So I don’t

Re: Can not use LDAP-Sync with Microsoft Active Directory

Hello, - stop OM - add the following line to `$OM_HOME/webapps/openmeetings/WEB-INF/classes/logback-config.xml`: `` - restart OM - Try to log in using the configured LDAP DB and try to debug the problem by checking the log file. By default, logging is done to the file `$OM_HOME/logs

Re: Can not use LDAP-Sync with Microsoft Active Directory

really weird even if mapping is wrong 1) login (after mapping) 2) type == LDAP 3) domainId should remain the same wrong but the same so users shouldn't get duplicated don't get how is this possible :( On Wed, 15 Apr 2020 at 23:09, Mathias Kocks wrote: > With your tip, i dont get

Re: [Possible Untrusted Sender] Re: [Possible Untrusted Sender] Re: Ldap with Microsoft Active Directory

32 > *To:* Openmeetings user-list > *Subject:* [Possible Untrusted Sender] Re: [Possible Untrusted Sender] > Re: Ldap with Microsoft Active Directory > > > > > > > > On Wed, 15 Apr 2020 at 21:01, Stephen COTTHAM < > stephen.cott...@robertbird.com.au> wrote:

RE: [Possible Untrusted Sender] Re: [Possible Untrusted Sender] Re: Ldap with Microsoft Active Directory

referral shortly. From: Maxim Solodovnik Sent: 15 April 2020 15:32 To: Openmeetings user-list Subject: [Possible Untrusted Sender] Re: [Possible Untrusted Sender] Re: Ldap with Microsoft Active Directory On Wed, 15 Apr 2020 at 21:01, Stephen COTTHAM mailto:stephen.cott...@robertbird.com.au

Re: Can not use LDAP-Sync with Microsoft Active Directory

Do you have additional DB entry on each login? this shouldn't be possible (AFAIR I have test to ensure this is impossible) On Wed, 15 Apr 2020 at 22:32, Rohrbach, Gerald wrote: > LDAP Mapping Problem, depends on > > ldap_userdn_format=userPrincipalName=%s,CN=Users,DC=

AW: Can not use LDAP-Sync with Microsoft Active Directory

LDAP Mapping Problem, depends on ldap_userdn_format=userPrincipalName=%s,CN=Users,DC=mydomain,DC=de ldap_user_attr_login=sAMAccountName With debug you can analyse. It depends if users login with userPrinicalName like in our case I use sAMAccountName for storing in db. Gerald Von: Mathias

AW: Can not use LDAP-Sync with Microsoft Active Directory

> Von: Maxim Solodovnik Gesendet: Mittwoch, 15. April 2020 16:58 An: Openmeetings user-list Betreff: Re: Can not use LDAP-Sync with Microsoft Active Directory congrats :) On Wed, 15 Apr 2020 at 21:53, Rohrbach, Gerald mailto:g.rohrb...@funkegruppe.de>> wrote: Under administration you can set t

Re: Can not use LDAP-Sync with Microsoft Active Directory

h, 15. April 2020 16:51 > *An:* user@openmeetings.apache.org > *Betreff:* AW: Can not use LDAP-Sync with Microsoft Active Directory > > > > Got it. > > > > This configuration runs with our Active Directory: > > > > ldap_server_type=AD > > ldap_conn_host=dc2.labmed.de

AW: Can not use LDAP-Sync with Microsoft Active Directory

Under administration you can set the default language to German… This helped us. Gerald Von: Mathias Kocks [mailto:ko...@labmed.de] Gesendet: Mittwoch, 15. April 2020 16:51 An: user@openmeetings.apache.org Betreff: AW: Can not use LDAP-Sync with Microsoft Active Directory Got it. This

AW: Can not use LDAP-Sync with Microsoft Active Directory

Web: https://www.labmed.de<https://www.labmed.de/> Von: Maxim Solodovnik Gesendet: Mittwoch, 15. April 2020 16:28 An: Openmeetings user-list Betreff: Re: Can not use LDAP-Sync with Microsoft Active Directory will answer here `%s` mean put passed parameter to this place as string full options

Re: [Possible Untrusted Sender] Re: Ldap with Microsoft Active Directory

password ins an see it > throws an exception, so we know the ADM account and password is correct. > > > > DSo now when I do a logon attempt I get > > > > DEBUG 04-15 13:51:54.681 o.a.o.c.l.LdapLoginManager:172 [nio-5443-exec-6] > - LdapLoginmanager.doLdapLogin >

Re: Can not use LDAP-Sync with Microsoft Active Directory

RCHANDBIND > > > > ldap_userdn_format=userPrincipalName=%s,CN=Users,DC=mydomain,DC=de > > > > ldap_provisionning=AUTOCREATE > > > > ldap_deref_mode=always > > > > ldap_use_admin_to_get_attrs=true > > ldap_sync_password_to_om=true > > > >

RE: [Possible Untrusted Sender] Re: Ldap with Microsoft Active Directory

N 04-15 13:51:54.710 o.a.o.c.l.LdapLoginManager:264 [nio-5443-exec-6] - Referral LDAP entry found, ignore it WARN 04-15 13:51:54.711 o.a.o.c.l.LdapLoginManager:264 [nio-5443-exec-6] - Referral LDAP entry found, ignore it WARN 04-15 13:51:54.711 o.a.o.c.l.LdapLoginManager:264 [nio-5443-exec-6] - Refer

Re: Ldap with Microsoft Active Directory

o-5443-exec-7] > - getByLogin:: authenticated ? false, login = 'stephen.cottham', domain = > 1, user = null > > ERROR 04-15 12:51:52.394 o.a.o.c.l.LdapLoginManager:338 [nio-5443-exec-7] > - LDAP entry is null, search or lookup by Dn failed > According to your config You hav

AW: Ldap with Microsoft Active Directory

[mailto:stephen.cott...@robertbird.com.au] Gesendet: Mittwoch, 15. April 2020 15:02 An: user@openmeetings.apache.org Betreff: RE: Ldap with Microsoft Active Directory Thanks Gerald, Ive tried as suggested by using SAM and the UPN, even tried injecting the domain portion after the @ with the domain and email

RE: Ldap with Microsoft Active Directory

-5443-exec-7] - No users was found: stephen.cottham DEBUG 04-15 12:51:52.393 o.a.o.c.l.LdapLoginManager:201 [nio-5443-exec-7] - getByLogin:: authenticated ? false, login = 'stephen.cottham', domain = 1, user = null ERROR 04-15 12:51:52.394 o.a.o.c.l.LdapLoginManager:338 [nio-5443-exec-

RE: Ldap with Microsoft Active Directory

Thanks Maxim! You guys have been busy!! Playing catch up but so far so good, just some woes with LDAP but will work thru it. 😊 From: Maxim Solodovnik Sent: 15 April 2020 13:41 To: Openmeetings user-list Subject: Re: Ldap with Microsoft Active Directory Welcome back Stephen, On Wed, Apr 15

AW: Ldap with Microsoft Active Directory

[mailto:stephen.cott...@robertbird.com.au] Gesendet: Mittwoch, 15. April 2020 14:22 An: user@openmeetings.apache.org Betreff: Ldap with Microsoft Active Directory Hey Guys, I am in the same situation as Mathias ldap issue below. My Config: ldap_conn_host=DC ldap_conn_port=389 ldap_conn_secure=false

Re: Ldap with Microsoft Active Directory

Welcome back Stephen, On Wed, Apr 15, 2020, 19:32 Stephen COTTHAM < stephen.cott...@robertbird.com.au> wrote: > Hey Guys, > > > > *I am in the same situation as Mathias ldap issue below.* > > > > *My Config:* > > > > ldap_conn_host=DC >

AW: Can not use LDAP-Sync with Microsoft Active Directory

ldap_deref_mode=always ldap_use_admin_to_get_attrs=true ldap_sync_password_to_om=true ldap_group_mode=NONE ldap_group_query=(&(memberUid=%s)(objectClass=posixGroup)) # Ldap user attributes mapping # Set the following internal OM user attributes to their corresponding Ldap-attri

Ldap with Microsoft Active Directory

Hey Guys, I am in the same situation as Mathias ldap issue below. My Config: ldap_conn_host=DC ldap_conn_port=389 ldap_conn_secure=false ldap_admin_dn='CN=Adm some user,OU=London,OU=Administrative Users,OU=RBG,OU=Rights Delegation,DC=domain,DC=local' ldap_passwd='**'

Re: Can not use LDAP-Sync with Microsoft Active Directory

Hello :) On Wed, 15 Apr 2020 at 19:06, Mathias Kocks wrote: > Hello, > > i am new to this project and a have a problem with the LDAP-Sync. I even > can not find any good documentations... > Documentation ATM is mostly questions and answers at ML https://openmeetings.markmail.o

Can not use LDAP-Sync with Microsoft Active Directory

Hello, i am new to this project and a have a problem with the LDAP-Sync. I even can not find any good documentations... My problem is, that slapd does not find any user in my AD. I am not even shure, if it is searching for real. I found in the mailing list archive some example configs, but

AW: Found your problems with LDAP and OpenMeetings, have the same

Yes, it works fine. Read mailing lists. Gerald Von: Maxim Solodovnik [mailto:solomax...@gmail.com] Gesendet: Mittwoch, 15. April 2020 13:27 An: Mathias Kocks Cc: Openmeetings user-list Betreff: Re: Found your problems with LDAP and OpenMeetings, have the same please do not write direct emails

Re: Found your problems with LDAP and OpenMeetings, have the same

Kocks wrote: > Hello, > i found your mails about the problem with LDAP-Sync and OpenMeetings. Do > you have found a fix? Because i am in the same trouble... It is now the > second day without a clue why it is not working. Very annoying... > > Thanks in advance. > Best regards

Re: LDAP config Manual, Limit access to AD Group members

xec-7] - > Invalid country found: DEUTSCHLAND, will be replaced with: AD > I do remember I wrote this before: OM expects country code NOT country name if country wasn't found the first country from the list is taken So OM expects LDAP to return "DE" as country NOT "

AW: LDAP config Manual, Limit access to AD Group members

d in OM no real problem. Maybe I will find sometimes a fix for that. Gerald Von: Maxim Solodovnik [mailto:solomax...@gmail.com] Gesendet: Montag, 13. April 2020 12:48 An: Openmeetings user-list Betreff: Re: LDAP config Manual, 1st draft - extension On Mon, Apr 13, 2020, 17:40 Rohrbach, Ge

Re: LDAP config Manual, 1st draft - extension

t up search query to return results from this group only? > > Gerald > > > -Ursprüngliche Nachricht- > Von: Orm Finnendahl [mailto:orm.finnend...@selma.hfmdk-frankfurt.de] > Gesendet: Montag, 13. April 2020 12:31 > An: user@openmeetings.apache.org > Betreff: Re: L

AW: LDAP config Manual, 1st draft - extension

rt.de] Gesendet: Montag, 13. April 2020 12:31 An: user@openmeetings.apache.org Betreff: Re: LDAP config Manual, 1st draft - extension Hi Gerald, thanks, I'll incorporate your suggestions into the HOWTO before submitting the pull request. Are the verbose debug logs also written to "catalina.out

Re: LDAP config Manual, 1st draft - extension

uot;? > It depends on configuration They are by default > -- > Orm > > > Am Montag, den 13. April 2020 um 09:20:26 Uhr (+) schrieb Rohrbach, > Gerald: > > Orm, > > > > I had the same issues with LDAP. It tooks a long time to figure it out. > > >

Re: LDAP config Manual, 1st draft - extension

Hi Gerald, thanks, I'll incorporate your suggestions into the HOWTO before submitting the pull request. Are the verbose debug logs also written to "catalina.out"? -- Orm Am Montag, den 13. April 2020 um 09:20:26 Uhr (+) schrieb Rohrbach, Gerald: > Orm, > > I had t

AW: LDAP config Manual, 1st draft - extension

Orm, I had the same issues with LDAP. It tooks a long time to figure it out. A very good hint was from Maxim to switch debug logging on. With that it was much easier. So probably it’s good to add this to you documentation. Somehow the LDAP config is related how in a corporate user accounts are

Re: LDAP config Manual, 1st draft

Hello Orm, On Mon, 13 Apr 2020 at 03:20, Orm Finnendahl < orm.finnend...@selma.hfmdk-frankfurt.de> wrote: > Hi, > > I made a draft of a LDAP config howto and uploaded it here for > review: > > https://selma.hfmdk-frankfurt.de/howtos/OM-ldap-howto.html > > I hope i

LDAP config Manual, 1st draft

Hi, I made a draft of a LDAP config howto and uploaded it here for review: https://selma.hfmdk-frankfurt.de/howtos/OM-ldap-howto.html I hope it's not too verbose, but since I had problems figuring out the ldap config in OM from the docs found online I tried to write up something in a way

Re: Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

Hello, I guess you can use ldap_auth_type=SEARCHANDBIND https://github.com/apache/openmeetings/blob/master/openmeetings-web/src/main/webapp/data/conf/om_ldap.cfg#L52 With ldap_search_query=(uid=%s) containing your LDAP group I usually test the query using some LDAP explorer :) On Sun, 12 Apr

AW: Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

would like to setup an AD group where the OM users are listed. Only this should be allowed by LDAP to check against ldap password. But I do not understand the logic of the ldap-query below. Gerald. Von: Maxim Solodovnik [mailto:solomax...@gmail.com] Gesendet: Sonntag, 12. April 2020 12:56 An

Re: Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

I don't see how ldap search can be insecure :( User provides credentials and they are being checked inside some private network And user is authenticated only if there was a match Maybe you can modify the search to search only inside group? On Sun, Apr 12, 2020, 14:31 Rohrbach, Gerald

AW: Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

Maxim, we only allow LDAP User, no registration. That´s fine. Probably the FW stuff is too complicate. I did not figured out the LDAP groups from the config file As our users are stored in different AD containers, we need to set the search base In the AD root. With that every account can be

Re: Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

Hello Gerald, No sure I get what is required :( You can set-up FW to reject some IPs, but this way all traffic will be filtered You can disable front-end registration, this way only LDAP users or invited guests can use OM (invited guests can only access room they were invited to, and invitation

Sending E-Mail to guests / Guest Invitation / LDAP Login only from defined IP ranges

this, this sounds like it will fulfil our needs. The login authentication on our internal server is against LDAP. AD If we put our machine in a DMZ, is there a way to protect Login from external IP`s but allow that a meeting link will come to the invited room session? The OM-db is on a separate

Re: ldap config problems with authentication

On Tue, 31 Mar 2020 at 15:26, Rohrbach, Gerald wrote: > Maxim, > > > > two small questions/ issues. > > > > Is it simple possible to set in the Login the LDAP as default and localDB > as option. > > So just the other way round? > This one should

AW: ldap config problems with authentication

Maxim, two small questions/ issues. Is it simple possible to set in the Login the LDAP as default and localDB as option. So just the other way round? If we do use LDAP ADS it seems not to work, that a user can change his own setting, If we set ldap password sync we will run into the password

Re: ldap config problems with authentication solved - Database move to different server

First of all clustering is not working in M3 https://issues.apache.org/jira/browse/OPENMEETINGS-2186 You need M4 SNAPSHOT for this Then, I'm afraid, there is misunderstanding: `localDB` is UI term means DB as opposite to LDAP To change DB location you need to change localhost to some extern

AW: ldap config problems with authentication solved - Database move to different server

. Because in the backup there was a localDB, on the new server I would like a different machine. Which file I need to edit? Regards Gerald. Von: Maxim Solodovnik [mailto:solomax...@gmail.com] Gesendet: Montag, 30. März 2020 16:19 An: Openmeetings user-list Betreff: Re: ldap config

Re: ldap config problems with authentication solved

; > > > > > *Von:* Maxim Solodovnik [mailto:solomax...@gmail.com] > *Gesendet:* Montag, 30. März 2020 14:37 > *An:* Openmeetings user-list > *Betreff:* Re: ldap config problems with authentication > > > > Of cause I can add simple check > "if-login-cont

AW: ldap config problems with authentication solved

gt; No duplicates anymore. Regards Gerald Von: Maxim Solodovnik [mailto:solomax...@gmail.com] Gesendet: Montag, 30. März 2020 14:37 An: Openmeetings user-list Betreff: Re: ldap config problems with authentication Of cause I can add simple check "if-login-contains-domain-do-not-add-another

  1   2   3   4   >