-
@mycc Just to double check - so Cloudron and Nextcloud are installed on separate servers, correct?
-
@mycc In Cloudron you need to white list the targets IP. Did you do that?
@BrutalBirdie I white listed the Cloudron's IP address under the "Restrict Access" field in the Directory Server. Is there another location where I need to white list an IP address?
-
Hello,
I am having some errors setting up a Nextcloud server doing user management with LDAP.
I configured my LDAP settings in Cloudron as follows:
CLOUDRON
Server URL
ldaps://[subdomain.domain]:636 (I removed the domain for privacy)
All LDAP queries have to be authenticated with this secret and the user DN cn=admin,ou=system,dc=cloudronBind password: (I selected a random 32 character string)
Restricted Access: I have the IP4 address for my Linode Server.
NEXTCLOUD
Here is a screenshot from Nextcloud (I removed my domain for privacy).
When I click "Save Credentials" I receive a "Configuration incomplete" error.
When I click "Test Base DN" I receive the following errors:
Configuration incorrect
The Base DN appears to be wrong
Lost connection to LDAP serverAm I inputting the wrong information for the credentials and Base DN? Thank you.
-
@girish No. I have Nextcloud deployed as a Cloudron app on the same server. I do have a separate nextcloud server on a different server as Cloudron with the same problem.
@mycc said in Nextcloud LDAP server not accepting Cloudron LDAP credentials Linode:
@girish No. I have Nextcloud deployed as a Cloudron app on the same server. I do have a separate nextcloud server on a different server as Cloudron with the same problem.
If the app is on Cloudron, you don't need to do any of this. Setting up LDAP/auth with Cloudron is automatic and part of Cloudron packaging. All you have to do is:
- Install nextcloud. When installing, you get the choice of installing with or without Cloudron user management. Select authentication against the Cloudron directory.
- Login with Cloudron credentials.
Did you do the above already? Did it not work for some reason?
(BTW, for the current app, if you just restart the app, the package re-configures LDAP on every start up. So, maybe you can just restart the app and try to login with Cloudron credentials.)
-
@mycc said in Nextcloud LDAP server not accepting Cloudron LDAP credentials Linode:
@girish No. I have Nextcloud deployed as a Cloudron app on the same server. I do have a separate nextcloud server on a different server as Cloudron with the same problem.
If the app is on Cloudron, you don't need to do any of this. Setting up LDAP/auth with Cloudron is automatic and part of Cloudron packaging. All you have to do is:
- Install nextcloud. When installing, you get the choice of installing with or without Cloudron user management. Select authentication against the Cloudron directory.
- Login with Cloudron credentials.
Did you do the above already? Did it not work for some reason?
(BTW, for the current app, if you just restart the app, the package re-configures LDAP on every start up. So, maybe you can just restart the app and try to login with Cloudron credentials.)
@girish Yes this solution worked for the Nextcloud server provisioned through Cloudron. However, I would also like to use Cloudron as a user management solution for Nextcloud's on different servers. I copied the pre-populated ldap settings that populated on the Cloudron's Nextcloud after restart.
I tried copying them to an external Nextcloud server. I did add both IP addresses to the white list.
The left is the ldap for the Cloudron Nextcloud server. The right is a separate server running Nextcloud.
-
So the exposed LDAP server uses different settings. The apps on Cloudron will get their own credentials and local access to LDAP. So an externally run Nextcloud has to have different configs. Have you seen https://docs.cloudron.io/user-management/#directory-server already?
-
So the exposed LDAP server uses different settings. The apps on Cloudron will get their own credentials and local access to LDAP. So an externally run Nextcloud has to have different configs. Have you seen https://docs.cloudron.io/user-management/#directory-server already?
@nebulon Thank you. I followed the guidance in this post before but it still gave me problems.
I selected my own secret and loaded the credentials.
Here is a screenshot of my results.
For user DN cn=admin,ou=system,dc=cloudron
For Base DN I used:
dc=[sub domain]
dc=[domain]
dc=com (my domain ends in .com) -
From the two shown error bubbles in your screenshot, it may seem that nextcloud can't even connect to the server in the first place. Can you double check the IP in the allowlist there? Also do you see any further details in the nextcloud logs about the connection attempt?
-
From the two shown error bubbles in your screenshot, it may seem that nextcloud can't even connect to the server in the first place. Can you double check the IP in the allowlist there? Also do you see any further details in the nextcloud logs about the connection attempt?
@nebulon I went ahead and SSHed into my the server running my Nextcloud and performed an ldapsearch. It is connecting to the server but something is going wrong in Nextcloud or my inputs into the ldap fields in Nextcloud are incorrect.
I verified the server IP address was correct.Here is a screenshot of the results of that ldap search.
-
@mycc said in Nextcloud LDAP server not accepting Cloudron LDAP credentials Linode:
@girish No. I have Nextcloud deployed as a Cloudron app on the same server. I do have a separate nextcloud server on a different server as Cloudron with the same problem.
If the app is on Cloudron, you don't need to do any of this. Setting up LDAP/auth with Cloudron is automatic and part of Cloudron packaging. All you have to do is:
- Install nextcloud. When installing, you get the choice of installing with or without Cloudron user management. Select authentication against the Cloudron directory.
- Login with Cloudron credentials.
Did you do the above already? Did it not work for some reason?
(BTW, for the current app, if you just restart the app, the package re-configures LDAP on every start up. So, maybe you can just restart the app and try to login with Cloudron credentials.)
@girish said in Nextcloud LDAP server not accepting Cloudron LDAP credentials Linode:
If the app is on Cloudron, you don't need to do any of this. Setting up LDAP/auth with Cloudron is automatic and part of Cloudron packaging. All you have to do is:
Install nextcloud. When installing, you get the choice of installing with or without Cloudron user management. Select authentication against the Cloudron directory.
Login with Cloudron credentials.Hello @girish. I'm trying to setup Cloudron LDAP/auth for a Nextcloud app installed on Cloudron (on the same server). But the Nextcloud app was not initially installed with Cloudron user management. Can I change this now or I need to re-install NextCloud completely ? Thanks for your support.
-
@girish said in Nextcloud LDAP server not accepting Cloudron LDAP credentials Linode:
If the app is on Cloudron, you don't need to do any of this. Setting up LDAP/auth with Cloudron is automatic and part of Cloudron packaging. All you have to do is:
Install nextcloud. When installing, you get the choice of installing with or without Cloudron user management. Select authentication against the Cloudron directory.
Login with Cloudron credentials.Hello @girish. I'm trying to setup Cloudron LDAP/auth for a Nextcloud app installed on Cloudron (on the same server). But the Nextcloud app was not initially installed with Cloudron user management. Can I change this now or I need to re-install NextCloud completely ? Thanks for your support.
-
@osobo yes, on Cloudron, you cannot change the user management after installation. It's best to re-install from scratch . It's quite complicated and very app specific to migrate existing users to LDAP and vice-versa.
