-
-
Notifications
You must be signed in to change notification settings - Fork 4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MacOSX CalDAV/CardDAV + LDAP not working ===> Nextcloud UUID used in LDAP authentication instead of Username #29433
Comments
Issue is related to: CALDAV/CARDDAV + LDAP Authentication That's because the .mobileconfig file is not populated with "Email" of the user, but rather the "UUID" generated at LDAP creation. For example, my .mobileconfig has:
Coming from template file:
Fix is at line 138: To make it work on my side, I had to manually download the .mobileconfig file, change the UUID to email and then import it in iOS/MacOSX. Authentication via LDAP is expecting to receive "email + password" but in fact it receives "UUID + password". Because the "UUID" is only available in "nextcloud", LDAP has no clue about who that "UUID" is. The fix would be to map "UUIDs" to "Email" and Nextcloud if it sees the "UUID" as username, picks up the "Email" and send the auth to LDAP with "Email + Password" not "UUID + Password" |
Fix for issue nextcloud#29433
Signed-off-by: Mihai Cornateanu <mihai.cornateanu@itmanager.ro>
Closes nextcloud#29433 Signed-off-by: ITManager <github.com@itmanager.ro>
Closes nextcloud#29433 Signed-off-by: ITManager <3145531+itmanagerro@users.noreply.github.com>
Closes nextcloud#29433 Signed-off-by: ITManager <3145531+itmanagerro@users.noreply.github.com>
This comment was marked as resolved.
This comment was marked as resolved.
FWIW I'm still facing this issue on Nextcloud 25.0.3. Let me know if there's anything more I can provide to help other than that I'm using the latest apache image from Docker, an Active Directory domain as an LDAP backend and have changed the internal username attribute to samaccountname for the sake of keeping federation IDs neat. |
Having just said that, I've just been able to connect through macOS/iOS anyway. Not sure if that shows it's unreliable or just that my server is playing up. Sorry to be unhelpful. |
hey everybody, we are experiencing the same issue on Nextcloud 25.0.3. |
Yes I can reproduce the issue on Nextcloud 27.1.4. LDAP provisioned my account with UUID as username, although I login with UID or email. My email is on my Nextcloud profile. However when generating a iOS config it uses UUID as the username and does not work. I see from the LDAP documentation that using UUID as Nextcloud’s internal username is recommended and expected behavior, so mapping UID into Nextcloud is not a solution. Config generation should check for “was this account made by LDAP” and if so, use email or UID to log in. Group assignment could work for this. |
How to use GitHub
Steps to reproduce
Expected behaviour
CalDav/CardDav should work with LDAP auth backend
Actual behaviour
Nextcloud does not know the "UUID" of the LDAP generated (only available inside Nextcloud)
Server configuration
Operating system: Doesn't matter
Web server: Nginx
Database: SQL
PHP version: 7.4
Nextcloud version: 22
Updated from an older Nextcloud/ownCloud or fresh install: Updated gradually from 14
Where did you install Nextcloud from: Source
Signing status:
Signing status
List of activated apps:
App list
Nextcloud configuration:
Config report
Are you using external storage, if yes which one: local/smb/sftp/...
Are you using encryption: yes/no
Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
LDAP configuration (delete this part if not used)
LDAP config
Client configuration
Browser:
Operating system:
Logs
Web server error log
Web server error log
Nextcloud log (data/nextcloud.log)
Nextcloud log
Browser log
Browser log
The text was updated successfully, but these errors were encountered: