NextCloud LDAP Error
-
I am attempting to connect my NextCloud 10 server to my domain controller using LDAP.
Host: <IP Address of Domain Controller>
User DN: uid=<admin account> , dc= , dc= ,
Password: <admin password>
Base DN: ???In some posts I've seen on the Nextcloud forums, people are saying your base OU should be the Base DN. The official documentation says:
Example: dc=my-company,dc=com
When I put dc=my domain,dc=com it still says the Base DN is incorrect.I'm sure this is syntax related but I haven't been able to figure it out.
-
In your other thread, you never mentioned Active Directory, which is a pretty big factor in LDAP setups.
-
Start with... what is the base of your AD?
-
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=org -
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
-
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
-
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
-
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
-
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
So you are joining NextCloud to AD that you've never even joined a Windows desktop to? What's the NAME of your AD Domain?
-
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
So you are joining NextCloud to AD that you've never even joined a Windows desktop to? What's the NAME of your AD Domain?
Right.
Let's assume we are talking about NTG here. They domainname might be ntg.co so when adding a computer, you would type in ntg.co, not servername.ntg.co
-
@Dashrender said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
So you are joining NextCloud to AD that you've never even joined a Windows desktop to? What's the NAME of your AD Domain?
Right.
Let's assume we are talking about NTG here. They domainname might be ntg.co so when adding a computer, you would type in ntg.co, not servername.ntg.co
My domain was setup in an odd way. It was the last company that was here before my current employer.
-
the domain controller is servername-dc1. Driving home. Will be back in about an hour
-
He doesn't need to actually join his Nextcloud server to AD does he? He just needs it to pull groups and authenticate NC users.
-
@dafyre said in NextCloud LDAP Error:
He doesn't need to actually join his Nextcloud server to AD does he? He just needs it to pull groups and authenticate NC users.
Correct
-
@JaredBusch - do you have to join oC to AD, or where you just able to use LDAP authentication? Granted NC is it's own thing, I'm guessing that part probably hasn't changed much.
-
@dafyre said in NextCloud LDAP Error:
He doesn't need to actually join his Nextcloud server to AD does he? He just needs it to pull groups and authenticate NC users.
Not the server, just the application.
-
@Dashrender said in NextCloud LDAP Error:
@JaredBusch - do you have to join oC to AD, or where you just able to use LDAP authentication? Granted NC is it's own thing, I'm guessing that part probably hasn't changed much.
Joining to a domain and authenticating against LDAP are two different terms for the same thing in this instance. Windows 10 joining to a domain is just authenticating against LDAP.
-
@scottalanmiller said in NextCloud LDAP Error:
@Dashrender said in NextCloud LDAP Error:
@JaredBusch - do you have to join oC to AD, or where you just able to use LDAP authentication? Granted NC is it's own thing, I'm guessing that part probably hasn't changed much.
Joining to a domain and authenticating against LDAP are two different terms for the same thing in this instance. Windows 10 joining to a domain is just authenticating against LDAP.
Right, these are the same thing.
-
@Dashrender said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
So you are joining NextCloud to AD that you've never even joined a Windows desktop to? What's the NAME of your AD Domain?
Right.
Let's assume we are talking about NTG here. They domainname might be ntg.co so when adding a computer, you would type in ntg.co, not servername.ntg.co
Or more commonly, because that would be a blunder that NTG would not make, it would be something like ad.ntg.co as the domain and a DC would be something like ny-win-dc1.ad.ntg.co.
-
@scottalanmiller said in NextCloud LDAP Error:
@Dashrender said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
@wirestyle22 said in NextCloud LDAP Error:
@scottalanmiller said in NextCloud LDAP Error:
Start with... what is the base of your AD?
CN=<username>,CN=FCC,CN=Divison of Information Technology,CN=administration,CN=Departments,DC=domaincontroller.domain,DC=orgSo when you join a Windows desktop to the domain, you put domaincontroller.domain.org?
That's not normal.
I tried it both ways
Before we try things, let's be systematic. What do you put onto Windows machines to do this? Ignore NextCloud for the moment.
The last time I've ever had to do anything with LDAP was like 7 years ago working at the hospital. It's been a really long time for me.
So you are joining NextCloud to AD that you've never even joined a Windows desktop to? What's the NAME of your AD Domain?
Right.
Let's assume we are talking about NTG here. They domainname might be ntg.co so when adding a computer, you would type in ntg.co, not servername.ntg.co
Or more commonly, because that would be a blunder that NTG would not make, it would be something like ad.ntg.co as the domain and a DC would be something like ny-win-dc1.ad.ntg.co.
Correct the current Microsoft recommended standard is ad.yourrealdomain.tld
The old standard of domain.local has been not a standard for years and years.
So my test AD infrastructure (because we do not use AD for anything real) is ad.bundystl.com and the DC is bundydc01.ad.bundystl.com
