Not logged in. · Lost password · Register

All posts by kokel (2)

topic: ldap auth group support with groupOfNames  in the forum: General Help and Support Installation and Configuration
Avatar
kokel #1
Member since Sep 2013 · 2 posts
Group memberships: Members
Show profile · Link to this post
Thanks for the reply.

But I get this working set the group key back to "cn" which is the default. I had set this to 'uid'.
Maybe the documentation could be more exact about the group key directive or name it to a better one like 'group rdn' e.g.

Regards,
Tobias Hachmer
topic: ldap auth group support with groupOfNames  in the forum: General Help and Support Installation and Configuration
Avatar
kokel #2
Member since Sep 2013 · 2 posts
Group memberships: Members
Show profile · Link to this post
Subject: ldap auth group support with groupOfNames
Hello,

I have a problem with groupOfNames in ldap auth plugin with dokuwiki weatherwax.

LDAP:
Group Object:
dn: cn=wikiAdmins,ou=wiki,ou=groups,dc=example,dc=com
objectClass: top
objectClass: groupOfNames
cn: wikiAdmins
member: uid=tobias.hachmer,ou=users,dc=example,dc=com

User Entry:
dn: uid=tobias.hachmer,ou=users,dc=example,dc=com
structuralObjectClass: inetOrgPerson
memberOf: cn=wikiAdmins,ou=wiki,ou=groups,dc=example,dc=com

dokuwiki conf:
$conf['authtype'] = 'authldap';
$conf['passcrypt'] = 'ssha';
$conf['plugin']['authldap']['server'] = 'ldap://ldap.example.com:389';
$conf['plugin']['authldap']['usertree'] = 'ou=users,dc=example,dc=com';
$conf['plugin']['authldap']['grouptree'] = 'ou=wiki,ou=groups,dc=example,dc=com';
$conf['plugin']['authldap']['userfilter'] = '(&(uid=%{user})(objectClass=person))';
$conf['plugin']['authldap']['groupfilter'] = '(&(objectClass=groupOfNames)(member=%{dn}))';
$conf['plugin']['authldap']['version'] = 3;
$conf['plugin']['authldap']['starttls'] = 1;
$conf['plugin']['authldap']['binddn'] = 'uid=wiki,ou=systems,dc=example,dc=com';
$conf['plugin']['authldap']['bindpw'] = 'pw';
$conf['plugin']['authldap']['groupkey'] = 'uid';
$conf['plugin']['authldap']['debug'] = 1;

I can't get the group stuff working. Authentication works fine but dokuwiki doesn't recognize ldap groups.

Running doku.php?do=check as authenticated ldap user gets this:
You are currently logged in as tobias.hachmer (Tobias Hachmer)
You are part of the groups user

The user group is not from ldap.
Please give me hint what I am doing wrong or to get this working.

Thanks,
Kokel
Close Smaller – Larger + Reply to this post:
Special characters:
Special queries
Go to forum
Imprint
This board is powered by the Unclassified NewsBoard software, 20150713-dev, © 2003-2015 by Yves Goergen
Current time: 2019-10-15, 16:34:37 (UTC +02:00)