guacamole-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark van den Boogaard <>
Subject Re: LDAP Active Directory
Date Fri, 06 Jan 2017 12:54:21 GMT

You have a typo in "ldap-serach-bind-dn". This must be "ldap-search-bind-dn".
The rest seems OK.


Met vriendelijke groet / with kind regards,

Mark van den Boogaard
Linux specialist


Mob: +31 6 82241436

Davanti Warehousing B.V.
Hogeweg 35E, Postbus 2601, 5300 CB Zaltbommel


-----Original Message-----
From: BeardFace <<>>
Reply-to: <>
Subject: LDAP Active Directory
Date: Fri, 6 Jan 2017 04:23:54 -0800

Good afternoon,

Have followed many guides (starting from the official documentation) and I
am struggling to get LDAP Authentication with Active Directory working. The
server itself can connect to LDAP via ldapsearch. The MySQL authentication
is working a treat, but would like the LDAP working too with MySQL storing
the connection information so I don't have to change the schemas.

This comes up in the Catalina log.

DEBUG o.a.g.a.l.AuthenticationProviderService - Anonymous bind is not
currently allowed by the LDAP authentication provider.

and the file is as follows:

# Hostname and port of guacamole proxy
guacd-hostname: localhost
guacd-port: 4822

# Location to read extra .jar's from
#lib-directory: /var/lib/tomcat8/webapps/guacamole/WEB-INF/classes
#lib-directory: /etc/guacamole/extensions

# Authentication provider class
#auth-provider: org.apache.guacamole.auth.ldap.LDAPAuthenticationProvider

# Properties used by BasicFileAuthenticationProvider
#basic-user-mapping: /etc/guacamole/user-mapping.xml

# LDAP properties
ldap-hostname: <IP_Address>
ldap-port: 389
ldap-user-base-dn: OU=Staff,OU=Domain Users,DC=MyDomain,DC=com
ldap-serach-bind-dn: CN=Administrator,OU=Admins,OU=Domain
ldap-search-bind-password: SetPassword
ldap-username-attribute: sAMAccountName

# MySQL properties
mysql-hostname: localhost
mysql-port: 3306
mysql-database: guacamole
mysql-username: guacamole
mysql-password: SetPassword

Any help would be appreciated.

View this message in context:
Sent from the Apache Guacamole (incubating) - Users mailing list archive at

View raw message