t3ext-ig_ldap_sso_auth icon indicating copy to clipboard operation
t3ext-ig_ldap_sso_auth copied to clipboard

Published 20 hours ago verified publisher icon xperseguers

Backend LDAP users with admin-flag can't access admin-modules with user password

Open jkkauhan opened this issue 2 years ago • 2 comments

We are authenticating backend users with ig_ldap_sso_auth and some users have their admin-flag set. When trying to access admin modules in the backend, TYPO3 v10 requests the user password again for extra security. LDAP authenticated users get message that their password is not correct, where local TYPO3 users get access to admin modules. Workaround is to use install tool password.

jkkauhan avatar Aug 01 '22 12:08 jkkauhan

I can confirm that for 10LTS and additionally for 11LTS using the extension in v3.7.0 - be aware that this additional re-auth is only necessary in PRODUCTION context, in DEVELOPMENT context it is skipped and you don't need to re-auth

jpmschuler avatar Oct 25 '22 14:10 jpmschuler

Confirmation for TYPO3 11.5.35 and ig_ldap_sso_auth 3.7.1. in the log I can find: Login-attempt from 10.100.123.123, username 'pi_phi', no suitable hash method found!

pi-phi avatar Feb 20 '24 07:02 pi-phi