[ome-users] Group mapping (LDAP)
Aleksandra Tarkowska (Staff)
A.Tarkowska at dundee.ac.uk
Mon May 23 10:46:56 BST 2016
Hi Shaun,
What exactly you mean by re-install, did you upgrade?
Could you detail more what is not working exactly, is there any error in Blitz-1.log file?
Could you give us more details about your previous and recent installations, which version did you use before and now,
output of:
- bin/omero config get --hide-password
- bin/omero admin diagnostics
Could you send example ldap entry of user and group?
Could you try CLI and show the output of:
- bin/omero ldap active
- bin/omero ldap discover
- bin/omero ldap getdn --user-name USERNAME
- bin/omero login username at server:4064 #please use ldap user
Could you also send all logs stored in /path/to/omero/var/log
If you prefer not to share all the above, please use http://qa.openmicroscopy.org.uk/qa/upload/
From the other hand, did you try `omero.ldap.sync_on_login true` https://www.openmicroscopy.org/site/support/omero5.2/sysadmins/server-ldap.html#synchronizing-ldap-on-user-login
Ola
Software Engineer
Open Microscopy Environment
University of Dundee
On 20 May 2016, at 18:15, Shaun Hare <Shaun.Hare at nottingham.ac.uk<mailto:Shaun.Hare at nottingham.ac.uk>> wrote:
Hi community members
We have previously had configuration working for group mapping here at Nottingham University
However after a re-install the settings don’t seem to be working – could anyone please advise if there is a issue here
What we are trying to achieve is new users go into the group they are a member of (note they will belong to many groups)
E.g members of cn=LS-OMERO-SRM go into that group
Settings
omero.ldap.base=ou=Users,ou=University,dc=ad,dc=nottingham,dc=ac,dc=uk
omero.ldap.config=true
omero.ldap.group_filter=(|(cn=LS-OMERO-SRM)(cn=LS-OMERO-LSM710))
omero.ldap.group_mapping=name=cn
omero.ldap.new_user_group=:query:(member=@{dn})
omero.ldap.password=********
omero.ldap.urls=*********
omero.ldap.user_filter=(|(memberOf=CN=LS-Omero-SRM,ou=Groups,ou=LS,ou=L,ou=Groups,ou=University,dc=ad,dc=nottingham,dc=ac,dc=uk)(memberOf=CN=LS-Omero-LSM710,ou=Groups,ou=LS,ou=L,ou=Groups,ou=University,dc=ad,dc=nottingham,dc=ac,dc=uk))
omero.ldap.user_mapping=omeName=sAMAccountName,firstName=givenName,lastName=sn,email=mail
omero.ldap.username=CN=*********,CN=Users,DC=ad,DC=nottingham,DC=ac,DC=uk
Many thanks in anticipation
Shaun
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please send it back to me, and immediately delete it.
Please do not use, copy or disclose the information contained in this
message or in any attachment. Any views or opinions expressed by the
author of this email do not necessarily reflect the views of the
University of Nottingham.
This message has been checked for viruses but the contents of an
attachment may still contain software viruses which could damage your
computer system, you are advised to perform your own checks. Email
communications with the University of Nottingham may be monitored as
permitted by UK legislation.
_______________________________________________
ome-users mailing list
ome-users at lists.openmicroscopy.org.uk<mailto:ome-users at lists.openmicroscopy.org.uk>
http://lists.openmicroscopy.org.uk/mailman/listinfo/ome-users
The University of Dundee is a registered Scottish Charity, No: SC015096
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openmicroscopy.org.uk/pipermail/ome-users/attachments/20160523/c4c2f220/attachment.html>
More information about the ome-users
mailing list