Announcement

Collapse
No announcement yet.

Login with domainname ldap

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Login with domainname ldap

    Hello,

    I'm new OX User. I make a new installation with ldapauth. this works fine and I can login to the appsuite. But now i have ldapuser like name@domain.

    How can i configure OX that with ldapauth works with domainnames? When i enter name@domain OX search in ldap only name.

    Best regards

    Lars

  • #2
    Hi,

    can you be more specific, please?
    Are you trying to authenticate against a Active Directory Server (Windows Doamin) or against a common LDAP Server?

    Here is an example for authentication against an AD (Windows) with "username@windows-domain".
    Code:
    java.naming.provider.url=ldap://win-pdc.domain.local:389/
    
    java.naming.security.authentication=simple
    
    com.sun.jndi.ldap.connect.timeout=10000
    
    com.sun.jndi.ldap.read.timeout=10000
    
    uidAttribute=sAMAccountName
    
    baseDN=cn=Users,dc=win-pdc,dc=domain,dc=local
    
    ldapReturnField=sAMAccountName
    
    adsBind=false
    
    subtreeSearch=true
    
    searchFilter=(objectClass=user)
    
    bindDN=win-pdc\\administrator
    
    bindDNPassword=admin-password
    
    referral=follow
    In this case the ldap-attribute sAMAccountName contains the value for the username that is used by the OX server.

    In addition to the config above you have to add a login mapping to your context that is called like your domain-name (for example like above: win-pdc)

    After these changes it should be possible to sign in as "username@domain-name" on your server.


    Regards
    --
    Benedikt Kröning
    Open-Xchange Quality Assurance

    Comment


    • #3
      Hello,

      i use an openldap. cyrus and postfix also authenticate against openldap.

      My ldapauth.properties are:

      java.naming.provider.url=ldap://localhost:389/
      java.naming.security.authentication=simple
      com.sun.jndi.ldap.connect.timeout=10000
      com.sun.jndi.ldap.read.timeout=10000
      uidAttribute=uid
      baseDN=ou=user,dc=mail,dc=domain,dc=de
      ldapReturnField=
      adsBind=false
      subtreeSearch=false
      referral=follow

      In ldap i have accounts like this:

      uid=a.b@domain2.de,ou=user,dc=mail,dc=domain,dc=de
      uid=c.d,ou=user,dc=mail,dc=domain,dc=de

      but when i enter a.b@domain2.de as username the ldap log shows only:

      conn=138916 op=1 BIND dn="uid=a.b,ou=user,dc=mail,dc=domain,dc=de" method=128

      i think OX removed all after the @.

      The login with only c.d works.
      It can be problem with the input form, so that interpret the @ as something.

      greets
      Last edited by larsk; 09-05-2013, 03:22 PM.

      Comment

      Working...
      X