Étienne BERSAC
Étienne BERSAC
> Update: your answer provided in #407 does let me login to the two different domains using the same search user and binddn. Still puzzles me why I can connect...
> Given new insights provided by other tickets, I wonder if binddn: is relevant here, as this issue only occurs when using SASL. binddn is unused with SASL. That would...
> > ``` > > sync_map: > > - ldapsearch: > > uri: ldap://domain1.company.com> > > basedn: ... > > roles: "{cn}" > > ``` > > Unfortunately this doesn't...
> ``` > $ sudo docker run --rm -v ${PWD}/ldap2pg.emea.yml:/workspace/ldap2pg.yml -e VERBOSITY=DEBUG dalibo/ldap2pg ... > [ldap2pg.script CRITI] Failed to connect to LDAP: {'desc': 'Unknown authentication method', 'errno': 22, 'info': 'SASL(-4):...
@arjan-saly-tfs latest docker image has SASL modules, fixing `Unknown authentication method` error.
> @bersace I tested the new docker image and it SASL now works fine indeed. Thanks for the quick fix! Unfortunately with the same domain/forest limitations as I run into...
That feature is a good step toward #406
> So, if adding multi-ldap-server is really is a good _and useful_ step towards #406 , it would be a good addition. However, if that would mean it will take...
> For your additional information: This week we made the design choice to step away from existing AD groups, define dedicated AD groups for the ldap2pg sync and keep those...
Can you share verbose output ? Does comment https://github.com/dalibo/ldap2pg/issues/390#issuecomment-974093715 help you ?