Hi @joram ,
Can you help me as well
Hi @Zholaman ,
Can you help me? I am trying to integrate LDAP wth flowable, i am currently using a test LDAP server
but i am getting 401 when authenticating with idm user. Here is the LDAP configuration i am using in idm,
ldap.enabled=true
ldap.server=ldap://ldap.forumsys.com
ldap.port=389
ldap.user=cn=read-only-admin,dc=example,dc=com
ldap.password=password
ldap.basedn=dc=example,dc=com
ldap.userbasedn=ou=mathematicians,dc=example,dc=com
ldap.query.userbyid=(&(objectClass=inetOrgPerson)(u…
I am also getting 401 but no error in the log of idm app.
Edit 1 :
with this application.properties config
ldap.enabled=true
ldap.server=ldap://ldap.forumsys.com
ldap.port=389
ldap.user=cn=read-only-admin,dc=example,dc=com
ldap.password=password
ldap.basedn=dc=example,dc=com
ldap.query.userbyid=(&(objectClass=inetOrgPerson)(uid={0}))
ldap.query.userbyname=(&(objectClass=inetOrgPerson)(|({0}={1} )({2}={3} )))
ldap.query.userall=(objectClass=inetOrgPerson)
ldap.query.groupsforuser=(&(objectClass=groupOfUniqueNames)(uniqueMember={0}))
ldap.query.groupall=(objectClass=groupOfUniqueNames)
ldap.attribute.userid=uid
ldap.attribute.firstname=cn
ldap.attribute.lastname=sn
ldap.attribute.email=mail
ldap.attribute.groupid=cn
ldap.attribute.groupname=cn
ldap.cache.groupsize=10000
ldap.cache.groupexpiration=180000
#
# DEFAULT ADMINISTRATOR ACCOUNT
#
admin.userid=boyle
my authentication is success but my account api is giving 401.
I am using username as “boyle” and password as “password”.
I think this is because boyle is not getting privileges to access the ui apps. How can i add it?
Edit 2:
Hi @Zholaman ,
Migrating idm to fresh database solved the problem. By default “boyle” got access(when idm setup database for 1st time) to all the apps but i am not able i am not getting users list from LDAP in the idm app although i am getting all the available groups from LDAP. Any idea how can i get list of users(i am guessing some problem with the getAllUsers query)? Also, migrating to fresh database isn’t a good solution, any idea how can we solve it?
Thank You,
Arpit Agrawal
Hi @Zholaman ,
i tried this query ldap.query.userall=(&(objectClass=inetOrgPerson)(uid=*)) and i am getting all the users(dont know how correct or wrong this query is but its giving results). Now where can i add the query to get users for a particular group? I see only query to get either users or groups, but no query to get users of a group. Also, on the group tab of flowable-idm, when i click on any group, ideally it should show me users belonging to that group, but its not showing anything an…
Thank You,
Arpit Agrawal