Active Directory Account is locked when using Nextcloud Android Client

Rudolf_Achter · January 25, 2019, 1:46pm

Support intro

Sorry to hear you’re facing problems

help.nextcloud.com is for home/non-enterprise users. If you’re running a business, paid support can be accessed via portal.nextcloud.com where we can ensure your business keeps running smoothly.

In order to help you as quickly as possible, before clicking Create Topic please provide as much of the below as you can. Feel free to use a pastebin service for logs, otherwise either indent short log examples with four spaces:

example

Or for longer, use three backticks above and below the code snippet:

longer
example
here

Some or all of the below information will be requested if it isn’t supplied; for fastest response please provide as much as you can

Nextcloud version (eg, 12.0.2): 15.0.2
Nextcoud Android Client: 3.4.2
Nextcloud LDAP Plugin: 1.5.0
Operating system and version (eg, Ubuntu 17.04): Ubuntu 18.04.1 LTS
Apache or nginx version (eg, Apache 2.4.25): 2.4.29-1ubuntu4.5
PHP version (eg, 7.1): libapache2-mod-php7.2:
Installiert: 7.2.10-0ubuntu0.18.04.1

The issue you are facing:

I Use Nextcloud Android Client 3.4.2 . Nextcloud Server is installed at our company -> Configured for Authentication via LDAP.

Every few Hours my Active Directory Account is locked (more than 10 Logins with wrong Credentials)
In Security Auditing i can identify wrong Logins come from Nextcloud Server

Is this the first time you’ve seen this error? (Y/N): Y

Steps to replicate it:

Install Active Directory with Account Locking Policy (for example 3 false Attempts)
Install and Configure Nextcloud 15.0.2 with LDAP Authentication to this Active Directory
Use Nextcloud Android Client 3.4.2

(Looks Like multiple failed login Attempts. I did not change my password anywhere)

The output of your Nextcloud log in Admin > Logging:

{"reqId":"fn03O2c9IxLa8D0P6Ydu","level":1,"time":"2019-01-22T21:26:03+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"enxFldIAWPB7LQkSHC3g","level":1,"time":"2019-01-22T21:26:03+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"pS1vdh3wJavhL88IuBqD","level":1,"time":"2019-01-22T21:26:04+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"juZq5pTp8LgKCcBJcCOZ","level":1,"time":"2019-01-22T21:26:04+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"eZ9L2KeXn2jYBWcqSpwh","level":1,"time":"2019-01-22T21:37:30+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"0hTIX6muShVGK4V4X2lX","level":1,"time":"2019-01-22T21:37:30+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"lMHexW55ZELqb368cB1c","level":1,"time":"2019-01-22T21:37:36+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"WEDG1GyPVJpi8jnz23cN","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"1TDcm7kv7Pb2g5bi1gBi","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"WEDG1GyPVJpi8jnz23cN","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"WEDG1GyPVJpi8jnz23cN","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"F5B89232-315B-455F-9986-42EDE1C14353","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login successful: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"1TDcm7kv7Pb2g5bi1gBi","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"1TDcm7kv7Pb2g5bi1gBi","level":1,"time":"2019-01-22T22:03:27+00:00","remoteAddr":"87.155.169.156","user":"F5B89232-315B-455F-9986-42EDE1C14353","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login successful: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"sOFfBsmi3h23lyFqFC93","level":1,"time":"2019-01-22T22:03:41+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"rudolf.achter@megatech-communication.de\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"sOFfBsmi3h23lyFqFC93","level":1,"time":"2019-01-22T22:03:41+00:00","remoteAddr":"87.155.169.156","user":"--","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login attempt: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}
{"reqId":"sOFfBsmi3h23lyFqFC93","level":1,"time":"2019-01-22T22:03:41+00:00","remoteAddr":"87.155.169.156","user":"F5B89232-315B-455F-9986-42EDE1C14353","app":"admin_audit","method":"GET","url":"\/index.php\/204","message":"Login successful: \"F5B89232-315B-455F-9986-42EDE1C14353\"","userAgent":"Mozilla\/5.0 (Android) ownCloud-android\/3.4.1","version":"15.0.2.0"}

The output of your config.php file in /path/to/nextcloud (make sure you remove any identifiable information!):

<?php
$CONFIG = array (
  'passwordsalt' => 'XX',
  'secret' => 'PXXX',
  'trusted_domains' =>
  array (
    0 => 'localhost',
    1 => 'nextcl.domain.local',
    2 => 'nextcloud.domain.de',
  ),
  'datadirectory' => '/var/www/nextcloud/data',
  'overwrite.cli.url' => 'http://localhost',
  'dbtype' => 'mysql',
  'version' => '15.0.2.0',
  'dbname' => 'nextcloud',
  'dbhost' => 'localhost',
  'dbport' => '',
  'dbtableprefix' => 'oc_',
  'dbuser' => 'oc_nexadmin',
  'dbpassword' => 'XXX',
  'installed' => true,
  'instanceid' => 'ocmro5m1qrnp',
  'ldapIgnoreNamingRules' => false,
  'ldapProviderFactory' => '\\OCA\\User_LDAP\\LDAPProviderFactory',
  'mail_smtpmode' => 'smtp',
  'mail_smtpauthtype' => 'PLAIN',
  'mail_from_address' => 'nextcloud',
  'mail_domain' => 'domain.de',
  'maintenance' => false,
  'theme' => '',
  'loglevel' => 0,
  'mail_smtphost' => 'exchange.domain.local',
  'mail_smtpport' => '25',
  'memcache.local' => '\\OC\\Memcache\\Memcached',
  'twofactor_enforced' => 'false',
  'twofactor_enforced_groups' =>
  array (
  ),
  'twofactor_enforced_excluded_groups' =>
  array (
  ),
);

The output of your Apache/nginx/system log in /var/log//var/log/apache2/other_vhosts_access.log.3.gz:

deslnvmnextcl01.megatech.local:443 192.168.96.60 - rudolf.achter@megatech-communication.de [22/Jan/2019:16:48:42 +0100] "GET /index.php/204 HTTP/1.1" 204 1373 "-" "Mozilla/5.0 (Android) ownCloud-android/3.4.1"
deslnvmnextcl01.megatech.local:443 87.155.169.156 - rudolf.achter@megatech-communication.de [22/Jan/2019:22:26:03 +0100] "GET /index.php/204 HTTP/1.1" 204 7792 "-" "Mozilla/5.0 (Android) ownCloud-android/3.4.1"
deslnvmnextcl01.megatech.local:443 87.155.169.156 - rudolf.achter@megatech-communication.de [22/Jan/2019:22:26:03 +0100] "GET /index.php/204 HTTP/1.1" 204 7794 "-" "Mozilla/5.0 (Android) ownCloud-android/3.4.1"
deslnvmnextcl01.megatech.local:443 87.155.169.156 - rudolf.achter@megatech-communication.de [22/Jan/2019:22:26:04 +0100] "GET /index.php/204 HTTP/1.1" 204 1456 "-" "Mozilla/5.0 (Android) ownCloud-android/3.4.1"
desln

Stephanstoke · January 31, 2020, 5:09pm

Hi!

Same problem here with ios app.
Tested with different nextcloud server versions but same problem, users are locked out everytime when opening the app.

Regards.