How to enable Active directory Authentication in snipe-it #551
Comments
|
Hi @sreejoo - Active Directory/LDAP support is not yet available in Snipe-IT. |
|
Hi - Is Active Directory/LDAP integration available? unable to integrate. |
|
@omerzubair80 Yes, AD integration has been part of Snipe-IT since v2.4. https://snipe-it-manual.readme.io/docs/ldap |
|
Hi - thanks for your response, i tried with the following below settings but its not working in my environment, pls advise how to fix it?
|
|
Need logs or at the very least an explanation of what you're seeing when you try to import users from LDAP or have an LDAP user login. |
|
Hi, Im trying to integrate with my Active directory but getting the following error; Also, where can find the logs? pls advise. |
|
Are you sure your LDAP server is accessible from the web server you're running this on? |
|
Yes, the LDAP server is accessible see below the screenshot.
|
|
As requested, here below are the logs for review pls advise how to fix it? |
|
I need server logs, as requested in the Getting Help directions. A 500 error doesn't help me if I don't know what the specific error is. |
|
Hi, can you advise where to enable the debug? new to php. |
|
|
|
No luck to find .env, in centos 7; any idea where to locate? |
|
It's there. Try |
|
(And if it's not there, I have no idea how you got this installation working at all, since creating that file is one of the first things you have to do.) |
|
I got it, but APP_DEBUG was not present have added the line APP_DEBUG=true. Know where to locate the debug logs files? |
|
This is why we ask you to fill in the issue template - knowing how you installed Snipe-IT in the first place would have saved me quite a bit of back and forth with you. Next time, please do not delete the template questions (or at least start your own issue here instead of resurrecting an old, closed thread). And once again, the information you're looking for is on the same page I keep sending you: https://snipe-it.readme.io/docs/getting-help#step-3-check-your-app-and-server-logs
I'm happy to try and help you, but you've really got to read the documentation first. |
|
Hi - here is the requested log file for your review. |
|
Please just paste it in here. I don't open binary files uploaded to github. |
|
[2016-09-16 12:28:35] production.DEBUG: Authenticating user against database. |
|
I need to see the actual error message from the 500 error you got during the LDAP test. |
|
see below here |
|
That is your browser telling you there is a 500 error response from the server. I need to know what the server says the specific error is. I don't know how much clearer to make this. |
|
let me know where is the log file located in server will send you. |
|
I have already pointed you to the docs and posted screenshots of the documentation. The pasted text above is likely the right file, but there are no errors in there, just authentication debug messages, which don't throw a 500 error. That's got to be an incomplete paste. Try this... Type: WHILE you hit the LDAP test button. |
|
Here below is the output [2016-09-20 12:38:34] production.DEBUG: Binding user to LDAP. |
|
That's not the output from pressing the "Test LDAP" button. That's the output from actually trying to login. |
|
still not clear where the exact output to capture? |
|
Hi - awaiting for your reply on last post, let us know how to capture the output? |
|
I have already explained it to you. Type: WHILE you hit the LDAP test button and watch what scrolls out onto the screen. |
|
Hi - here below is the output. root@asset:/var/www/html/snipeit�[root@asset snipeit]# |
|
Once again, that's debugging output for a login attempt, not the test script. You can keep pasting me the exact same thing over and over, and I'm just going to keep replying to you with the same info. For the Test LDAP script, we do not attempt a normal user auth, it's an admin auth, and that doesn't produce those debugging logs. There are two different, unrelated LDAP functions in Snipe-IT. One is an admin LDAP authentication, which facilitates the LDAP sync in the People section, the other is a standard LDAP user login, which is how your LDAP users would authenticate against your installation of Snipe-IT. One has absolutely nothing to do with the other, and the LDAP text button triggers an admin auth, similar to that of the LDAP sync, which DOES NOT produce the log files you are (ceaselessly) showing me. No amount of pasting the same logs is going to change that. Try this: Just because you can ping a server doesn't mean it's listening on LDAP ports. |
|
You mean the search need to be run on Centos? it says -bash: ldapsearch: command not found |
|
Sounds like you're not running OpenLDAP. |
|
Hi, still no luck. What i'm looking is when checkout asset to user, user names to be appear from my active directory. see below the screenshot & advise how to achieve it? |
|
Hi - awaiting for last post response prompt response will be highly appreciate. |
|
@snipe sorry just a heads up, when I have debug on, press the test button for ldap, it doesn't log anything to laravel.log fyi. (latest docker build). anything else we can try? ( I have mine working with a full admin user, but I''d like to use a separate ldapquery user that I use for other ad auth stuff, for jira and the likes) |
|
@omerzubair80 have you fix this issue? |
|
how to install ldap |
Hi,
This is an wonderful application to track all IT Assets. Can you please help me to login using Active directory ?
If it is possible, it will more helpful and I can even configure Single Sign on feature to all users, Avoid multiple login for different application.
thanks
Sreejooo
The text was updated successfully, but these errors were encountered: