6 / 10
Apr 2023

How to login with ldap account on EGroupware system? Can tell me how to setting LDAP on EGroupware system. Thanks.

  • created

    Mar '18
  • last reply

    Apr '23
  • 9

    replies

  • 3.0k

    views

  • 4

    users

  • 3

    links

Thanks tell me how to setup about LDAP.
I’am setting LDAP field, but login falied on EGroupware system and appear “Bad login or password”.
I’am settting LDAP configuration as follows.

Please help what’s problem result in login failed with LDAP account. Thanks.

If the entries you show in your screenshots are correct, you’re not using the right user-name (from uid attribute in LDAP!) or password. Authentication should always work against LDAP.

Once you have that step running, you need either need to migrate an existing installation or create a new EGroupware admin account to get EGroupware permissions.

Ralf

5 years later

I got a problem after trying to integrate Openldap with egroupware

Error:

Error:

*11707 FastCGI sent in stderr: “PHP message: An error happened! (TypeError): ldap_get_entries(): Argument #2 ($result) must be of type LDAP\Result, bool given (0)PHP message: File: /api/src/Auth/Ldap.php, Line: 76PHP message: #0 /usr/share/egroupware/api/src/Auth/Ldap.php(76): ldap_get_entries()PHP message: #1 /usr/share/egroupware/api/src/Auth.php(324): EGroupware\Api\Auth\Ldap->authenticate()PHP message: #2 [internal function]: EGroupware\Api\Auth->EGroupware\Api{closure}()PHP message: #3 /usr/share/egroupware/api/src/Cache.php(339): call_user_func_array()PHP message: #4 /usr/share/egroupware/api/src/Auth.php(325): EGroupware\Api\Cache::getCache()PHP message: #5 /usr/share/egroupware/api/src/Session.php(517): EGroupware\Api\Auth->authenticate()PHP message: #6 /usr/share/egroupware/login.php(231): EGroupware\Api\Session->create()PHP message: #7 {main}PHP message: # Instance=default, User=, Request=POST https://mail.des.gov.kh/egroupware/login.php?phpgw_forward=%2Findex.php1, User-agent=Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/112.0” while reading response header from upstream, client: 172.20.0.1, server: _, request: “POST /egroupware/login.php?phpgw_forward=%252Findex.php HTTP/1.1”, upstream: “fastcgi://172.20.0.3:9000”, host: “mail.des.gov.kh”, referrer: “https://mail.des.gov.kh/egroupware/login.php?phpgw_forward=%2Findex.php1

Hi Pisey,

please do NOT replye / hijack old threads.

Your problem looks like you’re using an OpenLDAP ObjectClass (posixAccount) with an ActiveDirectory server.

Anyway just switching Account and Authentication from SQL to LDAP, will break you EGroupware Installation as the numerical IDs used in the database no longer match.

If you only want Authentication, do NOT switch Accounts to LDAP, it means users, groups and group-memberships are no longer stored in the database, but read from the LDAP server. Just Authentication is more simple, it only requires users with identical user-names exist in your directory.

If you use a ActiveDirector server, it’s a lot easier to configure it as ActiveDirectory in EGroupware, than using the LDAP configuration for it. Just using Authentication (and not Accounts) applies equally.

I recommend we have an other call discussing your LDAP / ActiveDirectory strategy. Nowerdays I almost always recommend to use a periodic account import, over storing accounts in LDAP/AD.

Ralf

Dear Ralf,

Thanks for your reply, I am new to LDAP and how to integration LDAP with egroupware. May you provide me the guideline please?

PISEY

Let’s schedule an other call, that makes more sense, than trying to explain all about LDAP/AD here, not even knowing what you want to archive.

Ralf

Okay, By the way, what I want to archive is that I need only one time of user creation and that user can use for all service inside the egroupware platform, currently I need to login to our egroupware with a user then if I need to use Rocketchat then I have to login again with an other Rocketchat’s user.

Pisey