Open Microscopy Environment

Posted: **Tue Nov 05, 2013 2:21 pm**

Excellent. Then let us know how the new 'user_mapping' setting goes.

Cheers,
~Josh

Posted: **Wed Nov 27, 2013 2:47 am**

Hi Josh and Lloyd,
Didi this configuration end up working?
We are currently trying to enable LDAPS with Columbus 2.4.1 and Omero 4.4.7 but have not had any luck so far.
Our config is set up as follows ...

bin/omero config get:
omero.data.dir=/OMERO/OMERO4_4
omero.db.name=omero4_4
omero.db.pass=(hidden)
omero.db.patch=0
omero.db.poolsize=50
omero.db.user=(hidden)
omero.db.version=OMERO4.4
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.config=true
omero.ldap.new_user_group=All
omero.ldap.password=(hidden)
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
omero.ldap.username=(hidden)
omero.security.default_permissions=rwr---
omero.upgrades.url=http://0.0.0.0/

omero.properties:
omero.ldap.config=true
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.username=(hidden)
omero.ldap.password=(hidden)
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.referral=ignore
omero.ldap.sync_on_login=true
omero.ldap.user_filter=(objectClass=person)
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail

settings.conf:
omero.data.dir=/OMERO/OMERO4_4
omero.db.name=omero4_4
omero.db.user=(hidden)
omero.db.pass=(hidden)
omero.db.version=OMERO4.4
omero.db.patch=0
omero.db.poolsize=50
omero.upgrades.url=http://0.0.0.0/
omero.security.default_permissions=rwr---
omero.ldap.config=true
omero.ldap.urls=ldaps://signon.griffith.edu.au:636
omero.ldap.username=(hidden)
omero.ldap.password=(hidden)
omero.ldap.base=ou=active, ou=People, o=Griffith University
omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
omero.ldap.new_user_group=All

bin/omero group list:
(enter in root details)
Current group: system
id | name | perms | # of owners | # of members
----+-----------+--------+-------------+--------------
0 | system | rw---- | 1 | 0
1 | user | rwr-r- | 0 | 6
2 | guest | rw---- | 0 | 1
3 | Public_1 | rwr--- | 1 | 2
4 | Private_2 | rw---- | 0 | 3
5 | Public_2 | rwr--- | 0 | 0
6 | Private_1 | rw---- | 1 | 2
53 | All | rwr--- | 1 | 0

When I do ldapsearch command line I get results using the following:
ldapsearch -LLL -d8 -b 'ou=active, ou=People, O=Griffith University' -D '(hidden)' -H ldaps://signon.griffith.edu.au -w (hidden)

However, users are not able to log in successfully.
I have been monitoring columbus.log and Blitz-0.log but have not been able to grep ldap.

I have also tried 'bin/omero login' with my ldap credentials and receive the message:
Password check failed for 'userid': []

I have also tried changing to a non ssl ldap (ldap://signon.griffith.edu.au:389)
Again the 'ldapsearch' returns my directory details but bin/omero login and logging in via columbus login isn't working.

Is there another log file I should be monitoring?
Is there another file I should be looking at modifying?

Cheers,
Heidi

Posted: **Wed Nov 27, 2013 8:34 pm**

Hi Heidi,

heidip wrote:omero.ldap.user_mapping=omeName=uid,firstName=givenName,lastName=sn,email=mail
...
I have also tried 'bin/omero login' with my ldap credentials and receive the message:
Password check failed for 'userid': []

It seems odd that 'userid' is printed here. Could you show the LDAP entry for your user? (By email or private forum message if need be)

Thanks,
~Josh.

Open Microscopy Environment

LDAP not working

Re: LDAP not working

Re: LDAP not working

Re: LDAP not working