How to integrate Redmine with already existing LDAP?

Added by Ranieri Althoff over 7 years ago

I work at a laboratory where all computers are like "terminals" to a server, connected using LDAP so every computer may access the same files across the network. I read at Redmine configuration that it is able to use something with LDAP, but in no page of the Wiki I found how to connect to an existing LDAP server. How can I configure it, so I may use the same username and password for Redmine and computers auth?

I'm running bleeding-edge Redmine (from GitHub) with Ruby 2.1.1.

Replies (6)

RE: How to integrate Redmine with already existing LDAP? - Added by Martin Denizet (redmine.org team member) over 7 years ago

Hi Ranieri,

Ranieri Althoff wrote:

How can I configure it, so I may use the same username and password for Redmine and computers auth?

With ActiveDirectory

  • Name: Anything you want
  • Host: AD domain name (domain.lan) OR of a domain controller (dc1.domain.lan) OR IP of a domain controller
  • Port: 636 (LDAPS)
  • Account: A discovery user for Redmine, for example:
  • Password: **
  • Base DN: If you don't know it, use a LDAP browser to find it. for example: CN=Users,DC=domain,DC=lan
  • On-the-fly user creation: Yes, you might want that
Attributes:
  • Login: sAMAccountName (for user it will be john.doe)
  • First name: givenName
  • Last name: sn
  • Email: mail

Cheers,

RE: How to integrate Redmine with already existing LDAP? - Added by Ranieri Althoff over 7 years ago

I can't get it to work by any means. If you can, help me get those informations from somewhere.

I'm using OpenLDAP, not AD.

RE: How to integrate Redmine with already existing LDAP? - Added by Martin Denizet (redmine.org team member) over 7 years ago

Try to download LDAP Browser (Not LDAP Administrator, you have to select the correct tab in the website).
It should allow you to test and correct your settings.
Cheers,

RE: How to integrate Redmine with already existing LDAP? - Added by Ranieri Althoff over 7 years ago

The absolutely same query Redmine should do, but with ldapsearch, renders everything correctly. All users, all info, ok. Why the hell can't it work properly?

Also I'm using the exact same configuration that works for a PHPLDAPAdmin on the same server.

Okay, I fixed it. The problem was with the on-the-fly checkbox. In my language, Redmine Wiki says, when enabled, an user will be created when he first logs in, but doesn't specify WHERE this user is created, whether on Redmine or LDAP. Assuming it was on LDAP, I kept it turned off the whole week, while I was cracking my head. Turning it on fixed it.

RE: How to integrate Redmine with already existing LDAP? - Added by Toshi MARUYAMA over 7 years ago

Ranieri Althoff wrote:

I'm running bleeding-edge Redmine (from GitHub) with Ruby 2.1.1.

Ruby 2.1.1 is broken.
See #16194.

(1-6/6)