[10:14] luciash polom [10:15] robertokir joined #tikiwiki [10:18] luciash hi robertokir [14:12] RadoS joined #tikiwiki [15:20] bklier joined #tikiwiki [15:20] bklier Hi all - I've some problems authenticating my users using LDAP - maybe anyone could help [15:21] bklier I'm trying to authenticate against an Active Directory server, but I can't get it to work. [15:22] bklier On most systems I know you just provide an unprivileged LDAP user in the configuration and use this to bind to the directory, lookup the user trying to log in and then check the provided password against the user obtained in the first step [15:23] bklier but in tiki I can't find anything like that, and all the provided LDAP login methods don't seem to work with my setup :-( [15:23] bklier Any ideas? [16:10] luciash bklier: hi [16:11] luciash sorry, but I have no experience with LDAP [16:11] luciash bklier: did youcheck the forums? [16:11] luciash iirc there were people trying to solve similar issue [16:15] fabricius joined #tikiwiki [16:15] bklier luciash: I'm still mining the forums, but still no success [16:22] fabricius joined #tikiwiki [16:23] bklier If I could not get that to work that's a disqualifier for tiki :-( [16:39] bklier Any idea where to get help about that? [16:55] luciash bklier: you can start new thread in the forum perhaps [17:16] bklier luciash: If I'm honest i'm not very confident that there'll be any help. The last real LDAP related question has been asked about half a year ago and there's not even one reply... [17:17] bklier And - I don't want to be harsh - a community support chat with 14 members (including me and at least two bots) is not... maybe, let's call it 'active' ;-) [17:20] bklier It seems that there's a bug in the LDAP auth code... setting LDAP authentication method to 'active directory' still tries to do basic binding... :-( [17:21] bklier .o0(according to what tcpdump says about client <-> server communication) [17:22] Jyhem Hi bklier, which Tiki version is this ? [17:24] Jyhem Suggestion: put the credentials of the unprivileged LDAP user in the « LDAP admin » section (fields "Admin user" & "Admin password") [17:27] bklier Jyhem: right now it's 19.2 svn [17:28] bklier Jyhem: the credentials of the unprivileged LDAP user are in the 'LDAP admin' section... and they don't even get used. [17:30] Jyhem Hmmm, I never tried LDAP on 19.2 with AD :-( [17:32] Jyhem So, the "LDAP Bind Type" drop-down misses an option which provides a way of giving an "unprivileged LDAP user" credentials instead of anonymous binding? [17:33] Jyhem BTW, Community support is rather spread out. Some prefer IRC, others prefer forums, some would rather hang out on https://wikisuite.chat/XMPP [17:34] Jyhem or the mailing list [17:34] Jyhem Not generally the same people. And IRC attendance dropped since freenode registration is required :-( [17:45] bklier Jyhem: correct, there's no 'unprivileged LDAP user' option which makes LDAP binding almost impossible... [17:58] Jyhem :-( [17:59] Jyhem I can't help or try out, I have no access to microsoft servers, but I believe you. [18:01] Jyhem You could ask for confirmation of the issue on https://wikisuite.chat/XMPP or the forum or the mailing list but I think the issue is confirmed already. [18:01] Jyhem You can do a bug report/feature request /wish on dev.tiki.org [18:02] Jyhem Or ask if someone has access to Active Directory on https://wikisuite.chat/XMPP [18:18] bklier Jyhem: thank you - I'll try and hope for the best ;-) [20:17] fabricius joined #tikiwiki