Lars | 12. Iun 2012, 10:51
ActiveDirectory Authentication does not import users
I've got two clients in my system, one authenticating against an OpenLDAP and one authenticating against an ActiveDirectory. Both have the option to import users via cronjob activated in the System->Authentication->LDAP-Settings. This works perfectly well on the OpenLDAP-client, but does not work against the ActiveDirectory-client. I tried the following so far:
- If I test my query via ldapsearch from the ilias-system, I get all user accounts, so the binduser-rights, network, etc. are correct.
- I had to omit the ldap search base in the settings to allow my users to authenticate, despite the ldapsearch turning up correct results without it. Upon authentication, their ilias-user is correctly created.
- During running the cronjobs for the respective clients, I do not see any hint on imported users in the log files.
Any more ideas or tips on what the root of the problem could be?
zugenmaier | 03. Iul 2012, 13:19
Re: ActiveDirectory Authentication does not import users
I suppose that Active Directory always need the same base configuration, so maybe you could post it, and I can try to compare it with my settings? But regarding the fact that the login works, it seems that the settings are correct. So maybe the problem is rather the cron job? That's a total mess, I encountered a lot of problems with the cron job in many different cases (search index is not updated, dis quota mails are not sent, ...).