Apologies for my silence ; i think i understood how it works now. Thanks for pointing this out.
Le vendredi 8 juillet 2016 09:27:20 UTC+2, Vitaliy Demidov a écrit : > > Hi Gillies, > Is "Group1" attached to any Environment of your Account (see ACCESSIBLE > BY LDAP GROUPS). It can be done by admin user on Environment page. Admin > user is still able to sign in to Scalr using login and password. > > Vitaliy > > On Fri, Jul 8, 2016 at 10:13 AM, Gilles O <[email protected] > <javascript:>> wrote: > >> Hi Jay, Marc, >> >> Thanks for pointing these out. >> - i changed :bind_type to simple >> - using the full DN as login >> (uid=xyz,ou=User,ou=People,dc=example,dc=com), it was possible to >> authenticate. But i still can't login... >> >> Message now is a bit different : >> >> *You don't have access to any account. 49:25 - LdapClient v-0.5* >> 49:25 - isValidUser is called. >> 49:25 - LDAP Server is:ldap://server.example.com port:389 - OK >> 49:25 - Bind username:uid=xyz,ou=user,ou=people,dc=example,dc=com >> password:********* - OK >> 49:25 - Query baseDn (2):uid=xyz,ou=user,ou=people,dc=example,dc=com >> filter:(&(&(objectClass=posixAccount))(uid=*)), attributes: dn, memberof, >> mail, givenname - OK >> 49:25 - Query result count: 1 >> 49:25 - Email has been retrieved: [email protected] <javascript:> >> 49:25 - Full name has been retrieved: xyz >> 49:25 - Query result memberofDn: 1 >> 49:25 - Query result DN: uid=xyz,ou=User,ou=People,dc=example,dc=com >> 49:25 - Bind username:uid=xyz,ou=User,ou=People,dc=example,dc=com >> password:********* - OK >> 49:25 - getUserGroups is called. >> 49:25 - Query user's groups baseDn:OU=scalR1,OU=ABC,DC=example,DC=com >> >> filter:(&(&(objectClass=groupOfNames))(member=uid=xyz,ou=User,ou=People,dc=examples,dc=com)) >> >> - OK >> 49:25 - Found groups: Group1 >> >> So it seems my user is not bound to any account. >> How can this be done ? >> How do LDAP users display in the users management screens ? How are >> individual ldap users or ldap groups bound to teams ? >> >> I noticed that once LDAP is configured, it's no more possible to create a >> new user (the button is gone away). >> Thanks for any further advice. >> Rgds, >> G >> >> Le jeudi 7 juillet 2016 15:29:53 UTC+2, Jay Farschman a écrit : >>> >>> Gilles, >>> >>> I woke up this morning had some coffee and looked at your >>> scale-server.rb file again. I believe you have a problem here >>> >>> :bind_type => 'openldap', >>> >>> The bind_type options are "simple" or "regular" and I'm not sure what >>> would happen if you placed a value like "openldap" in that field. I >>> suspect it would use the default which is "regular" and you probably want >>> to use "Simple" There is more information about this in Advanced >>> Configuration page of the Wiki: >>> >>> https://scalr-wiki.atlassian.net/wiki/display/docs/Advanced+Configuration >>> >>> I hope that helps. >>> >>> On Wednesday, July 6, 2016 at 12:37:35 AM UTC-6, Gilles O wrote: >>>> >>>> Hi MArc, >>>> Scalr version i run is : >>>> VERSION >>>> 5.11.22 (Community Edition) >>>> REVISION >>>> 3fb5fbe (Fri, 24 Jun 2016 13:44:50 +0300) >>>> FULL REVISION HASH >>>> 3fb5fbe4372a6c5ab75bd9c42f75a169f864c4d4 >>>> >>>> Thanks >>>> G >>>> >>> -- >> You received this message because you are subscribed to the Google Groups >> "scalr-discuss" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected] <javascript:>. >> For more options, visit https://groups.google.com/d/optout. >> > > -- You received this message because you are subscribed to the Google Groups "scalr-discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
