[pve-devel] LDAP integration with G Suite?

Victor Hooi victorhooi at yahoo.com
Thu May 23 17:46:50 CEST 2019


G Suite also has audit records for the Secure LDAP service:

https://i.imgur.com/rvV9BXL.png

In this case - I can see entries for each time I used ldapsearch.

However, I do *not* see any entries for each time I try to login on
Proxmox. So it seems like it's not even hitting the server, yet Proxmox is
saying "no entries returned"?

On Thu, May 23, 2019 at 10:18 PM Victor Hooi <victorhooi at yahoo.com> wrote:

> Hi,
>
> Sorry, you're correct, that was a typo from re-running an earlier command:
>
> I've fixed it to set user-attr back to uid - in this case, no matter
> whether I set "secure" to 1 or 0 - I still get:
>
> ```
> May 23 22:16:37 syd1 pvedaemon[84179]: authentication failure;
> rhost=127.0.0.1 user=victorhooi at anguslab.io msg=no entries returned
> ```
>
> Is there any way of figuring out why it's not working, but ldapsearch is?
>
> Thanks,
> Victor
>
> On Thu, May 23, 2019 at 9:33 PM Dominik Csapak <d.csapak at proxmox.com>
> wrote:
>
>> On 5/23/19 1:11 PM, Victor Hooi wrote:
>> > Hi,
>> >
>> > I thought I'd try setting the "secure" value to true:
>> >
>> > ```
>> > # pvesh create /access/domains --realm anguslab.io --type ldap
>> --base_dn
>> > dc=anguslab,dc=io --server1 ldap.google.com --port 636 --cert
>> > /root/Google_2022_05_22_3494.crt --certkey /root/Google_20
>> > 22_05_22_3494.key --user_attr victorhooi --secure 1
>> > ```
>> >
>>
>> here you still have 'victorhooi' as user_attr instead of 'uid'.
>> a mistake?
>>
>> regards
>> Dominik
>>
>>
>> _______________________________________________
>> pve-devel mailing list
>> pve-devel at pve.proxmox.com
>> https://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
>>
>



More information about the pve-devel mailing list