Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

LDAP Synchronisation not working #4296

Open
hegnero opened this issue Aug 28, 2024 · 2 comments
Open

LDAP Synchronisation not working #4296

hegnero opened this issue Aug 28, 2024 · 2 comments

Comments

@hegnero
Copy link

hegnero commented Aug 28, 2024
edited
Loading

Steps to reproduce

  1. Configure LDAP
  2. Test authentication
  3. Click Ldap Synchronisation

Expected behaviour

Users are getting synched

Actual behaviour

no users are getting imported / synched

Server configuration

Operating system:
debian 12 ( bookworm )

Web server:
apache 2.4.61-1~deb12u1

Database:
10.11.6-MariaDB-0+deb12u1 Debian 12

PHP version:
8.3

Teampass version:
3.1.1 ( Git clone )

Teampass configuration file:

<?php
global $SETTINGS;
$SETTINGS = array (
    'max_latest_items' => '10',
    'enable_favourites' => '1',
    'show_last_items' => '1',
    'enable_pf_feature' => '1',
    'log_connections' => '0',
    'log_accessed' => '1',
    'time_format' => 'H:i:s',
    'date_format' => 'Y-m-d',
    'duplicate_folder' => '0',
    'item_duplicate_in_same_folder' => '0',
    'duplicate_item' => '0',
    'number_of_used_pw' => '3',
    'manager_edit' => '1',
    'cpassman_dir' => '/var/www/teampass-test',
    'cpassman_url' => 'https://teampass-test.dotsource.de',
    'favicon' => 'https://teampass-test.dotsource.de/favicon.ico',
    'path_to_upload_folder' => '/var/www/teampass-test/upload',
    'url_to_upload_folder' => 'https://teampass-test.dotsource.de/upload',
    'path_to_files_folder' => '/var/www/teampass-test/files',
    'url_to_files_folder' => 'https://teampass-test.dotsource.de/files',
    'activate_expiration' => '0',
    'pw_life_duration' => '0',
    'maintenance_mode' => '0',
    'enable_sts' => '0',
    'encryptClientServer' => '1',
    'cpassman_version' => '2.1.27',
    'ldap_mode' => '0',
    'ldap_type' => 'ActiveDirectory',
    'ldap_suffix' => '',
    'ldap_domain_dn' => 'dc=dotsource',
    'ldap_domain_controler' => '<omitted>',
    'ldap_user_attribute' => 'sAMAccountName',
    'ldap_ssl' => '1',
    'ldap_tls' => '0',
    'richtext' => '0',
    'allow_print' => '0',
    'roles_allowed_to_print' => '["["62"]"]',
    'show_description' => '1',
    'anyone_can_modify' => '0',
    'anyone_can_modify_bydefault' => '0',
    'nb_bad_authentication' => '0',
    'utf8_enabled' => '1',
    'restricted_to' => '0',
    'restricted_to_roles' => '0',
    'enable_send_email_on_user_login' => '0',
    'enable_user_can_create_folders' => '1',
    'insert_manual_entry_item_history' => '0',
    'enable_kb' => '0',
    'enable_email_notification_on_item_shown' => '0',
    'enable_email_notification_on_user_pw_change' => '0',
    'custom_logo' => '/media/dS_Logo_noClaim.png',
    'custom_login_text' => '',
    'default_language' => 'german',
    'send_stats' => '0',
    'get_tp_info' => '1',
    'send_mail_on_user_login' => '0',
    'nb_items_by_query' => 'auto',
    'enable_delete_after_consultation' => '0',
    'enable_personal_saltkey_cookie' => '1',
    'personal_saltkey_cookie_duration' => '31',
    'email_smtp_server' => '127.0.0.1',
    'email_smtp_auth' => '0',
    'email_auth_username' => '',
    'email_auth_pwd' => '',
    'email_port' => '25',
    'email_server_url' => 'https://teampass-test.dotsource.de',
    'email_from' => 'admin@dotsource.de',
    'email_from_name' => 'dotSource TeamPass-test',
    'pwd_maximum_length' => '80',
    'delay_item_edition' => '0',
    'allow_import' => '1',
    'proxy_ip' => '',
    'proxy_port' => '',
    'upload_maxfilesize' => '10mb',
    'upload_docext' => ',pub,doc,docx,dotx,xls,xlsx,xltx,rtf,csv,txt,pdf,ppt,pptx,pot,dotx,xltx',
    'upload_imagesext' => 'jpg,jpeg,gif,png',
    'upload_pkgext' => '7z,rar,tar,zip,gz',
    'upload_otherext' => 'sql,xml',
    'upload_imageresize_options' => '1',
    'upload_imageresize_width' => '800',
    'upload_imageresize_height' => '600',
    'upload_imageresize_quality' => '90',
    'use_md5_password_as_salt' => '0',
    'ga_website_name' => '',
    'api' => '0',
    'subfolder_rights_as_parent' => '1',
    'show_only_accessible_folders' => '0',
    'enable_suggestion' => '0',
    'otv_expiration_period' => '7',
    'send_stats_time' => '0',
    'tree_counters' => '0',
    'item_extra_fields' => '0',
    'enable_attachment_encryption' => '1',
    'copy_to_clipboard_small_icons' => '0',
    'settings_offline_mode' => '0',
    'offline_key_level' => '0',
    'bck_script_filename' => 'bck_cpassman',
    'bck_script_path' => '/var/www/teampass-test/backups',
    'can_create_root_folder' => '0',
    'timezone' => 'Europe/Berlin',
    'menu_type' => 'context',
    'email_security' => 'none',
    'default_session_expiration_time' => '300',
    'ldap_bind_dn' => '<omitted>',
    'ldap_search_base' => '<omitted>',
    'ldap_bind_passwd' => '<omitted>',
    'duo' => '0',
    'google_authentication' => '0',
    'enable_server_password_change' => '0',
    'syslog_enable' => '0',
    'syslog_host' => 'localhost',
    'syslog_port' => '514',
    'ldap_object_class' => 'person',
    'saltkey_ante_2127' => '<omitted>',
    'teampass_version' => '3.1.1',
    'migration_to_2127' => 'done',
    'manager_move_item' => '0',
    'create_item_without_password' => '0',
    'send_statistics_items' => 'stat_country;stat_users;stat_items;stat_items_shared;stat_folders;stat_folders_shared;stat_admins;st',
    'agses_authentication_enabled' => '0',
    'personal_saltkey_security_level' => '0',
    'ldap_new_user_is_administrated_by' => '0',
    'ldap_port' => '636',
    'enable_http_request_login' => '0',
    'admin_2fa_required' => '1',
    'otv_is_enabled' => '0',
    'ldap_and_local_authentication' => '1',
    'secure_display_image' => '1',
    'upload_zero_byte_file' => '0',
    'upload_all_extensions_file' => '1',
    'files_with_defuse' => 'done',
    'disable_show_forgot_pwd_link' => '1',
    'ldap_new_user_role' => '57',
    'password_overview_delay' => '4',
    'roles_allowed_to_print_select' => '',
    'clipboard_life_duration' => '30',
    'mfa_for_roles' => '',
    'settings_tree_counters' => '0',
    'enable_massive_move_delete' => '0',
    'email_debug_level' => '0',
    'ga_reset_by_user' => '',
    'onthefly-backup-key' => '',
    'onthefly-restore-key' => '',
    'ldap_user_dn_attribute' => 'distinguishedname',
    'ldap_dn_additional_user_dn' => '',
    'ldap_user_object_filter' => '(objectCategory=person)(objectClass=user)(!(useraccountcontrol:1.2.840.113556.1.4.803:=2))',
    'ldap_bdn' => '<omitted>',
    'ldap_hosts' => '<omitted>',
    'ldap_password' => '<omitted>',
    'ldap_username' => '<omitted>',
    'api_token_duration' => '60',
    'enable_tasks_manager' => '1',
    'task_maximum_run_time' => '300',
    'maximum_number_of_items_to_treat' => '300',
    'tasks_manager_refreshing_period' => '100',
    'ldap_tls_certifacte_check' => 'LDAP_OPT_X_TLS_NEVER',
    'enable_tasks_log' => '0',
    'enable_ad_users_with_ad_groups' => '0',
    'enable_ad_user_auto_creation' => '0',
    'ldap_group_object_filter' => '',
    'ldap_guid_attibute' => 'objectguid',
    'sending_emails_job_frequency' => '2',
    'user_keys_job_frequency' => '1',
    'items_statistics_job_frequency' => '5',
    'reload_cache_table_task' => '',
    'rebuild_config_file' => '',
    'purge_temporary_files_task' => '',
    'clean_orphan_objects_task' => '',
    'users_personal_folder_task' => '',
    'maximum_session_expiration_time' => '60',
    'items_ops_job_frequency' => '1',
    'upgrade_timestamp' => '1723018476',
    'enable_refresh_task_last_execution' => '1',
    'ldap_group_objectclasses_attibute' => 'top,groupofuniquenames',
);

Updated from an older Teampass or fresh install:
Updated from 2.1.27.36

Client configuration

Browser:
Chrome

Operating system:
windows 11

Logs

Web server error log

no errors on logs

Log from the web-browser developer console (CTRL + SHIFT + i)

no errors on logs
@gonzalodeniz
Copy link

I think it's a problem with the external LdapRecord library. Try changing the type to OpenLdap.

@gonzalodeniz
Copy link

This solution worked for me.
#4080 (comment)

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@gonzalodeniz @hegnero