New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[authad] Multiple domains but same admin_user #1648
Comments
The authad plugin has a debug config setting. Enabling this temporary gives sometimes additional debug information. Edit: sorry, you applied it already. |
As shown in my config debug is enabled.
|
@splitbrain has included an dropdown for selecting a domain with #541. Maybe he can give you some suggestions or an example configuration? Other work on multiple domains is in #141 the commit comments explains a bit, but probably not enough for configuration purposes. |
Got a slight update: The only problem is that the user id is reference to the account_suffix. So if I uncomment the account_suffix, add the domain to my query-user and login with user@example.com or user@others.example.com I alwas get: Bad username or password and the page is reloading with containing only the "user" without @example.com in the login form. Therefore the bind seems to work. UPDATE: After a little bit of code searching I found out, that adLDAP seems to append the account_suffix to the admin_username. So therefore I posted an issue there: adldap/adLDAP#117 |
Might be fixed in current release of adldap lib. Needs to be updated in authad. |
You right, there is also an issue for that, see #1553 |
Unfortunately I am too less of an php developer to get this done. The solution might be in adldap2 (https://github.com/Adldap2/Adldap2). |
Regarding the closed issue (#678) I will provide a documentation for this after success.
The problem is in a configuration with multiple domains but the same admin user to query the entries:
The only message I can get so far is: "Bad username or password"
I already tried to add the domain to the admin_username (e.g. query@example.com in both domains) but then the AD bind fails.
Has anyone an idea on how to get this work? If I use the ADExplorer and log in with the admin_username I can query both domains.
The text was updated successfully, but these errors were encountered: