Hi Josh and Lloyd,
Didi this configuration end up working?
We are currently trying to enable LDAPS with Columbus 2.4.1 and Omero 4.4.7 but have not had any luck so far.
Our config is set up as follows ...
bin/omero config get:omero.data.dir=/OMERO/OMERO4_4
omero.db.name=omero4_4
omero.db.pass=(hidden)
omero.db.patch=0
omero.db.poolsize=50
omero.db.user=(hidden)
omero.db.version=OMERO4.4
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.config=true
omero.ldap.new_user_group=All
omero.ldap.password=(hidden)
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
omero.ldap.username=(hidden)
omero.security.default_permissions=rwr---
omero.upgrades.url=http://0.0.0.0/
omero.properties:omero.ldap.config=true
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.username=(hidden)
omero.ldap.password=(hidden)
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.referral=ignore
omero.ldap.sync_on_login=true
omero.ldap.user_filter=(objectClass=person)
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
settings.conf:omero.data.dir=/OMERO/OMERO4_4
omero.db.name=omero4_4
omero.db.user=(hidden)
omero.db.pass=(hidden)
omero.db.version=OMERO4.4
omero.db.patch=0
omero.db.poolsize=50
omero.upgrades.url=http://0.0.0.0/
omero.security.default_permissions=rwr---
omero.ldap.config=true
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.username=(hidden)
omero.ldap.password=(hidden)
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
omero.ldap.new_user_group=All
bin/omero group list:(enter in root details)
Current group: system
id | name | perms | # of owners | # of members
----+-----------+--------+-------------+--------------
0 | system | rw---- | 1 | 0
1 | user | rwr-r- | 0 | 6
2 | guest | rw---- | 0 | 1
3 | Public_1 | rwr--- | 1 | 2
4 | Private_2 | rw---- | 0 | 3
5 | Public_2 | rwr--- | 0 | 0
6 | Private_1 | rw---- | 1 | 2
53 | All | rwr--- | 1 | 0
When I do ldapsearch command line I get results using the following:
ldapsearch -LLL -d8 -b 'ou=active, ou=People, O=Griffith University' -D '(hidden)' -H
ldaps://signon.griffith.edu.au -w (hidden)
However, users are not able to log in successfully.
I have been monitoring columbus.log and Blitz-0.log but have not been able to grep ldap.
I have also tried 'bin/omero login' with my ldap credentials and receive the message:
Password check failed for 'userid': []
I have also tried changing to a non ssl ldap (
ldap://signon.griffith.edu.au:389)
Again the 'ldapsearch' returns my directory details but bin/omero login and logging in via columbus login isn't working.
Is there another log file I should be monitoring?
Is there another file I should be looking at modifying?
Cheers,
Heidi
by jmoore » Tue Nov 05, 2013 2:21 pm 