Hi fellow Nextcloud admins!
I’ve been trying to get Nextcloud setup with my LDAP server but am struggling to get it working.
- The setup in the admin panel appears to work and I can correctly search for people in the LDAP
- I can look into my nextcloud_ldap logs (The information written to
'ldap_log_file' => '/var/log/nextcloud/nextcloud_ldap',
fromconfig.php
The query given there does appear to work and return the wanted user if i verify this using ldapsearch
on the server directly.
In the nextcloud_ldap
logs i get the following output:
ldap_connect::["ldaps:\/\/ldap.bocken.org:636"]
ldap_set_option::["(resource)",17,3]
ldap_set_option::["(resource)",8,0]
ldap_set_option::["(resource)",20485,"15"]
ldap_bind::["(resource)","cn=ldapservice,ou=users,dc=ldap,dc=bocken,dc=org","<PASSWORD>"]
ldap_search::["(resource)","dc=ldap,dc=bocken,dc=org","(&(&(|(objectclass=user))(|(memberof=cn=nextcloud_users,ou=groups,dc=ldap,dc=bocken,dc=org)))(|(cn=alexander)))",["entryuuid","nsuniqueid","objectguid","guid","ipauniqueid","dn","uid","samaccountname","memberof","mail","displayname","jpegphoto","thumbnailphoto"],0,0,-1,0,[{"oid":"1.2.840.113556.1.4.319","value":{"size":500,"cookie":""},"iscritical":false}]]
ldap_errno::["(resource)"]
ldap_get_entries::["(resource)","(resource)"]
ldap_parse_result::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_explode_dn::["cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org",0]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_search::["(resource)","dc=ldap,dc=bocken,dc=org","(&(&(|(objectclass=user))(|(memberof=cn=nextcloud_users,ou=groups,dc=ldap,dc=bocken,dc=org)))(|(cn=alexander)))",["entryuuid","nsuniqueid","objectguid","guid","ipauniqueid","dn","uid","samaccountname","memberof","mail","displayname","jpegphoto","thumbnailphoto"],0,0,-1,0,[{"oid":"1.2.840.113556.1.4.319","value":{"size":500,"cookie":""},"iscritical":false}]]
ldap_errno::["(resource)"]
ldap_get_entries::["(resource)","(resource)"]
ldap_parse_result::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_explode_dn::["cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org",0]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_search::["(resource)","dc=ldap,dc=bocken,dc=org","(&(&(|(objectclass=user))(|(memberof=cn=nextcloud_users,ou=groups,dc=ldap,dc=bocken,dc=org)))(|(cn=alexander)))",["entryuuid","nsuniqueid","objectguid","guid","ipauniqueid","dn","uid","samaccountname","memberof","mail","displayname","jpegphoto","thumbnailphoto"],0,0,-1,0,[{"oid":"1.2.840.113556.1.4.319","value":{"size":500,"cookie":""},"iscritical":false}]]
ldap_errno::["(resource)"]
ldap_get_entries::["(resource)","(resource)"]
ldap_parse_result::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_explode_dn::["cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org",0]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["entryuuid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["nsuniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["objectguid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["guid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_read::["(resource)","cn=alexander,ou=users,dc=ldap,dc=bocken,dc=org","objectClass=*",["ipauniqueid"],0,-1]
ldap_first_entry::["(resource)","(resource)"]
ldap_get_attributes::["(resource)","(resource)"]
ldap_unbind::["(resource)"]
The ldap_errno::["(resource)"]
let’s me believe that there is an error occuring but this logging output is a bit too obscure for me to understand.
Can anyone here help me understand the logs? What is going wrong?
Let me know if you require further information about my setup to help me.
I have already connected my jellyfin instance to this ldap server so i doubt the LDAP server is the culprit.
Best,
Alexader