Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • 3 Votes
    4 Posts
    247 Views
    luckowL

    @fbartels thank you very much for this important point. In my answer I completely forgot to point out the potential pitfalls of already existing external apps. So @pbischoff in your requirements concept you should take a closer look at the needs of the external apps. The moment they need something specific like office printers, pictures, phone numbers .... you are lost with the built in LDAP directory server.

  • 0 Votes
    3 Posts
    115 Views
    D

    Thank you

  • 0 Votes
    5 Posts
    196 Views
    andreasduerenA

    @girish Yeah, unfortunately won't work yet.
    https://forum.cloudron.io/topic/8940/apps-with-openid-connect-provider-beta/13

  • 0 Votes
    3 Posts
    152 Views
    jdaviescoatesJ

    @luckow thanks for your input πŸ™‚

    @luckow said in Merging mulitple Cloudrons in to one big new one?:

    why?

    In part just so everything in one place and so I just have to manage, maintain, update etc one server instead of several servers.

    But also because e.g.

    I've got an instance of PeerTube on one of the smaller VPSs (it's bridport.tv so makes sense to have it on my.bridport.coop where I've got all the Bridport stuff), but I've realised that it really needs a lot more power than that server has.

    I'd also like to give access to some of the apps of got on my.uniteddiversity.coop to all the people on my.bridport.coop - at present this would mean them creating another account and then not having the same credentials for both (although to be fair most of the apps currently on my.bridport.coop aren't LDAP enabled anyway, either because they don't have it - like Discourse - or because it doesn't really suit the use case - public instances of PeerTube, Mastodon, Pixelfed).

    I think quite a few of the apps would likely benefit for the increased power the dedicated server would have.

    The issues you've highlighted wouldn't be that big an issue for me because I think I'm currently the only person/ name who is on all of them so there aren't two Jane Does (but there would be if I started saying "sign-up over on my.uniteddiversity.coop so I can give you access to our shared x too".

    The biggest issue would be getting the handful of people actively using some of the other Cloudrons over onto the One Big Cloudron, but currently the numbers of people I'm talking about would be manageable (but this gets harder as more people start joining the other secondary Cloudrons).

  • 2 Votes
    14 Posts
    892 Views
    DanTheManD

    @nebulon
    I'm totally sure that I have enabled the directory server in Cloudron, not sure where it's stuck...

    Maybe I will try and give it a go to package Authelia as an app in Cloudron. Only thing is i have zero experience with that, so it's going to be a learning curve....

    Maybe @Jan-Macenka can help/assist me with that?

  • 0 Votes
    15 Posts
    655 Views
    S

    @nebulon Issues solved it was my issues by doing wrong LDAP Filter.

  • 1 Votes
    10 Posts
    442 Views
    fbartelsF

    @andreasdueren i think I just followed their documentation: https://goauthentik.io/docs/providers/ldap/generic_setup

  • 0 Votes
    3 Posts
    310 Views
    girishG

    @nebulon Per https://docs.microsoft.com/en-us/windows/win32/adschema/a-userprincipalname , it's an email address and not a username. Also, see https://ldapwiki.com/wiki/UserPrincipalName which sometimes says email and sometimes username.

    @colonelpanic Do you know what your software expects this to be?

  • 0 Votes
    4 Posts
    284 Views
    luckowL

    @girish wait ... true πŸ™‚
    6a136902-e13f-47d9-b8be-68193a8688b4-image.png