search

MutonUfoAI / pgina

pGina fork: Open Source Windows Authentication
http://mutonufoai.github.io/pgina
BSD 3-Clause "New" or "Revised" License
156 stars 39 forks source link

LDAP Plugin error / distinguished name contains invalid syntax #162

Closed nmaas87 closed 4 years ago

nmaas87 commented 4 years ago

I successfully could use the ldap plugin to login with each user in my freeIPA system. Now I wanted to allow only users of the group allowdUsers to be able to login. So I decided to go to the Authorization tab, set the default action to deny and establish this rule:

If (&(memberUid=%u)) level Base in cn=allowedUsers,cn=groups,cn=accounts,dc=example,dc=com allow, which I somewhat modified to my path from http://mutonufoai.github.io/pgina/documentation/plugins/ldap.html - however, if I try to login with a user which beforehand could login (and is in the group), I get the pgina error "The distinguished name contains invalid syntax"

What am I missing?

Thanks a lot!

nmaas87 commented 4 years ago

Can be closed, this error was due to the fact that I entered the wrong password for the LDAP base user / search DN.