Re: [Freeipa-users] OC and FreeIPA
> -Original Message- > > From: Rob Crittenden > To: Jonathan J. Ramirez C. > Cc: freeipa-users@redhat.com > Subject: Re: [Freeipa-users] OC and FreeIPA > Date: Thu, 17 Jul 2014 10:33:50 -0400 > > > Jonathan J. Ramirez C. wrote: > > -Original Message- > > *From*: Rob Crittenden > <mailto:rob%20crittenden%20%3crcrit...@redhat.com%3e>> > > *To*: Jonathan J. Ramirez C. > <mailto:%22jonathan%20j.%20ramirez%20c.%22%20%3cjonathan.rami...@solmar.com%3e>>, > > freeipa-users@redhat.com <mailto:freeipa-users@redhat.com> > > *Subject*: Re: [Freeipa-users] OC and FreeIPA > > *Date*: Wed, 16 Jul 2014 14:12:34 -0400 > > > > Jonathan J. Ramirez C. wrote: > >> Hi. > >> > >> Does anybody here know how to properly set up ownCloud 6.0.4 to work > >> with FreeIPA 3.3.5? I keep getting these messages when trying to logon > >> to OC with a created account in FreeIPA. > >> > >> Here's a sample: > >> > >> ownCloud[2182]: {user_ldap} initializing paged search for > >> FilterobjectClass=* base Array ([0] => > >> uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com) attr ipauniqueid limit > >> 9 offset 0 > >> ownCloud[2182]: {user_ldap} Ready for a paged search > >> ownCloud[2182]: {user_ldap} Requested attribute ipauniqueid not found > >> for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com > >> ownCloud[2182]: {user_ldap} Could not autodetect the UUID attribute > >> ownCloud[2182]: {user_ldap} Cannot determine UUID for > >> uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com. Skipping. > >> ownCloud[2182]: {core} Login failed: user 'jonram' , wrong password, > >> IP:set log_authfailip=true in conf > >> > >> I'm really new to OC and IPA so I don't know where to poke to make it > >> work. I'll much appreciate any hint. > > > > > >> I've never dealt with OC before but I scanned the LDAP docs quickly. > >> > >> You will want to set separate user and group base DNs. It is using the > >> compat tree and that is likely the wrong thing in this case. > >> > >> Users: cn=users,cn=accounts,dc=mydomain,dc=com > >> Groups: cn=groups,cn=accounts,dc=mydomain,dc=com > >> > >> That will fix the UUID issue at least. > >> > >> Have you set a password for this user account, and have you > >> authenticated with it yet? IPA marks all administratively set passwords > >> as expired, so you need to authenticate and change the password before > >> it is generally usable. > >> > >> IPA uses memberOf for its grouping in case you need to specify it. > >> > >> rob > > > > Thank you very much Rob. > > > > The use of separate user and group DNs gave me the clue to what I had to > > add in the OC LDAP settings. > > Great news. If you have the time and inclination I'd encourage you to > consider writing up a short how-to on our wiki at > http://www.freeipa.org/page/HowTos > > regards > > rob > I will do that. As soon as I wrap it all up, I'll write a short tutorial. Again, thanks. -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] OC and FreeIPA
Jonathan J. Ramirez C. wrote: > -Original Message- > *From*: Rob Crittenden <mailto:rob%20crittenden%20%3crcrit...@redhat.com%3e>> > *To*: Jonathan J. Ramirez C. <mailto:%22jonathan%20j.%20ramirez%20c.%22%20%3cjonathan.rami...@solmar.com%3e>>, > freeipa-users@redhat.com <mailto:freeipa-users@redhat.com> > *Subject*: Re: [Freeipa-users] OC and FreeIPA > *Date*: Wed, 16 Jul 2014 14:12:34 -0400 > > Jonathan J. Ramirez C. wrote: >> Hi. >> >> Does anybody here know how to properly set up ownCloud 6.0.4 to work >> with FreeIPA 3.3.5? I keep getting these messages when trying to logon >> to OC with a created account in FreeIPA. >> >> Here's a sample: >> >> ownCloud[2182]: {user_ldap} initializing paged search for >> FilterobjectClass=* base Array ([0] => >> uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com) attr ipauniqueid limit >> 9 offset 0 >> ownCloud[2182]: {user_ldap} Ready for a paged search >> ownCloud[2182]: {user_ldap} Requested attribute ipauniqueid not found >> for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com >> ownCloud[2182]: {user_ldap} Could not autodetect the UUID attribute >> ownCloud[2182]: {user_ldap} Cannot determine UUID for >> uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com. Skipping. >> ownCloud[2182]: {core} Login failed: user 'jonram' , wrong password, >> IP:set log_authfailip=true in conf >> >> I'm really new to OC and IPA so I don't know where to poke to make it >> work. I'll much appreciate any hint. > > >> I've never dealt with OC before but I scanned the LDAP docs quickly. >> >> You will want to set separate user and group base DNs. It is using the >> compat tree and that is likely the wrong thing in this case. >> >> Users: cn=users,cn=accounts,dc=mydomain,dc=com >> Groups: cn=groups,cn=accounts,dc=mydomain,dc=com >> >> That will fix the UUID issue at least. >> >> Have you set a password for this user account, and have you >> authenticated with it yet? IPA marks all administratively set passwords >> as expired, so you need to authenticate and change the password before >> it is generally usable. >> >> IPA uses memberOf for its grouping in case you need to specify it. >> >> rob > > Thank you very much Rob. > > The use of separate user and group DNs gave me the clue to what I had to add > in the OC LDAP settings. Great news. If you have the time and inclication I'd encourage you to consider writing up a short how-to on our wiki at http://www.freeipa.org/page/HowTos regards rob -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] OC and FreeIPA
-Original Message- From: Rob Crittenden To: Jonathan J. Ramirez C. , freeipa-users@redhat.com Subject: Re: [Freeipa-users] OC and FreeIPA Date: Wed, 16 Jul 2014 14:12:34 -0400 Jonathan J. Ramirez C. wrote: > Hi. > > Does anybody here know how to properly set up ownCloud 6.0.4 to work > with FreeIPA 3.3.5? I keep getting these messages when trying to logon > to OC with a created account in FreeIPA. > > Here's a sample: > > ownCloud[2182]: {user_ldap} initializing paged search for > FilterobjectClass=* base Array ([0] => > uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com) attr ipauniqueid limit > 9 offset 0 > ownCloud[2182]: {user_ldap} Ready for a paged search > ownCloud[2182]: {user_ldap} Requested attribute ipauniqueid not found > for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com > ownCloud[2182]: {user_ldap} Could not autodetect the UUID attribute > ownCloud[2182]: {user_ldap} Cannot determine UUID for > uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com. Skipping. > ownCloud[2182]: {core} Login failed: user 'jonram' , wrong password, > IP:set log_authfailip=true in conf > > I'm really new to OC and IPA so I don't know where to poke to make it > work. I'll much appreciate any hint. > I've never dealt with OC before but I scanned the LDAP docs quickly. > > You will want to set separate user and group base DNs. It is using the > compat tree and that is likely the wrong thing in this case. > > Users: cn=users,cn=accounts,dc=mydomain,dc=com > Groups: cn=groups,cn=accounts,dc=mydomain,dc=com > > That will fix the UUID issue at least. > > Have you set a password for this user account, and have you > authenticated with it yet? IPA marks all administratively set passwords > as expired, so you need to authenticate and change the password before > it is generally usable. > > IPA uses memberOf for its grouping in case you need to specify it. > > rob Thank you very much Rob. The use of separate user and group DNs gave me the clue to what I had to add in the OC LDAP settings. Regards. JonRam. -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
Re: [Freeipa-users] OC and FreeIPA
Jonathan J. Ramirez C. wrote: > Hi. > > Does anybody here know how to properly set up ownCloud 6.0.4 to work > with FreeIPA 3.3.5? I keep getting these messages when trying to logon > to OC with a created account in FreeIPA. > > Here's a sample: > > ownCloud[2182]: {user_ldap} initializing paged search for > FilterobjectClass=* base Array ([0] => > uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com) attr ipauniqueid limit > 9 offset 0 > ownCloud[2182]: {user_ldap} Ready for a paged search > ownCloud[2182]: {user_ldap} Requested attribute ipauniqueid not found > for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com > ownCloud[2182]: {user_ldap} Could not autodetect the UUID attribute > ownCloud[2182]: {user_ldap} Cannot determine UUID for > uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com. Skipping. > ownCloud[2182]: {core} Login failed: user 'jonram' , wrong password, > IP:set log_authfailip=true in conf > > I'm really new to OC and IPA so I don't know where to poke to make it > work. I'll much appreciate any hint. I've never dealt with OC before but I scanned the LDAP docs quickly. You will want to set separate user and group base DNs. It is using the compat tree and that is likely the wrong thing in this case. Users: cn=users,cn=accounts,dc=mydomain,dc=com Groups: cn=groups,cn=accounts,dc=mydomain,dc=com That will fix the UUID issue at least. Have you set a password for this user account, and have you authenticated with it yet? IPA marks all administratively set passwords as expired, so you need to authenticate and change the password before it is generally usable. IPA uses memberOf for its grouping in case you need to specify it. rob -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
[Freeipa-users] OC and FreeIPA
Hi. Does anybody here know how to properly set up ownCloud 6.0.4 to work with FreeIPA 3.3.5? I keep getting these messages when trying to logon to OC with a created account in FreeIPA. Here's a sample: ownCloud[2182]: {user_ldap} initializing paged search for FilterobjectClass=* base Array ([0] => uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com) attr ipauniqueid limit 9 offset 0 ownCloud[2182]: {user_ldap} Ready for a paged search ownCloud[2182]: {user_ldap} Requested attribute ipauniqueid not found for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com ownCloud[2182]: {user_ldap} Could not autodetect the UUID attribute ownCloud[2182]: {user_ldap} Cannot determine UUID for uid=jonram,cn=users,cn=compat,dc=mydomain,dc=com. Skipping. ownCloud[2182]: {core} Login failed: user 'jonram' , wrong password, IP:set log_authfailip=true in conf I'm really new to OC and IPA so I don't know where to poke to make it work. I'll much appreciate any hint. Thanks in advance. -- Jonathan J. Ramirez C. -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project