Welcome to OCS Inventory NG community support, where you can ask questions and receive answers from other members of the community.

Please ask questions only in English or French.

Release 2.12.3 available

The official documentation can be found on https://wiki.ocsinventory-ng.org. Read it before asking your question.

Update broke ldap "No user provided"

After updating server from 2.9 to 2.10 we are no longer able to log in with ldap.
ldap login attempt returns an error "No user provided"

local credentials still work, and ldap configuration is unchanged.

Server info:

Centos7 3.10.0-1160.6.1.el7.x86_64

PHP 7.3.24

web server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips

database server: PHP/7.3.24 mod_perl/2.0.11 Perl/v5.16.3

MariaDB Server version 5.5.68-MariaDB
in OCS Inventory NG server for Unix by (160 points)

3 Answers

+1 vote
 
Best answer
Hi,

Make sure:

That php.ini is enabled this:

extension=ldap

and

var.conf (/usr/share/ocsinventory-reports/ocsreports/var.php ) is:

define('AUTH_TYPE', 2);
by (500 points)
selected by
0 votes
Hi! Did you fix it? I'm having the same issue.
by (230 points)
0 votes
Yes. I did.
Complementary settings (need to do changes in php.ini, and var.php).

Below is the configuration in OCS gui (change with your server information).

CONEX_LDAP_SERVEUR = ldap://172.29.10.1

CONEX_ROOT_DN = CN=Administrator,CN=Users,DC=domain,DC=local

CONEX_ROOT_PW = [PASSWORD of admin user above]

CONEX_LDAP_PORT = 389

CONEX_DN_BASE_LDAP = DC=domain,DC=local

CONEX_LOGIN_FIELD = sAMAccountName

CONEX_LDAP_PROTOCOL_VERSION = 3

CONEX_LDAP_CHECK_DEFAULT_ROLE = [EMPTY]

CONEX_LDAP_NB_FILTERS = 1

CONEX_LDAP_FILTER1 = &(memberOf=CN=GroupAD,OU=OCS,DC=domain,DC=local)

CONEX_LDAP_FILTER1_ROLE = RO

The best option is enable advanced to check "Attibute Editor" (Windows Active Directory).

 > The user need be domain admin (I tried with domain users and not worked).
> I created "GroupAD" inside the OU "OCS", in this way users in group "GroupAD", can login using AD credentials.
> check logs in :
/var/log/apache2/error.log (this is in ubuntu, change to 'named').

I hope that you can solve with this information above.
by (500 points)
 
Powered by Question2Answer
...