[
https://issues.apache.org/jira/browse/GUACAMOLE-1985?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17884948#comment-17884948
]
armfem commented on GUACAMOLE-1985:
-----------------------------------
Thanks for the clarification [~vnick]
This means OIDC and LDAP to work at the same time, the LDAP user database
import should be decouple from the authentication phase.
I know I have configured this in Nextcloud and other apps through a DSA
(Directory Service Account) in the LDAP which is use solely for the application
at hand.
In any case, I'll be interested to follow this issue and help where I can.
> There is no account reconciliation between OIDC and LDAP
> --------------------------------------------------------
>
> Key: GUACAMOLE-1985
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1985
> Project: Guacamole
> Issue Type: Wish
> Components: guacamole-auth-ldap
> Environment: LDAP: AD
> SSO: OIDC with LemonLDAP
> Reporter: armfem
> Priority: Minor
>
> Bonjour,
>
> I had configured guacamole users through LDAP, which work very nice. Then I
> added an SSO (LemonLDAP) which is connected via OIDC to guacamole. Which also
> seems to work quite nice to access it.
> The problem is that when connecting through OIDC I cannot access the users
> that are in LDAP, there are only users already connected through OIDC.
> Furthermore, it seems that the OIDC user is not reconciled with same name
> LDAP user.
>
> For the time being, I avoid the problem creating a group in LDAP and a group
> in Guacamole, and then the application is able to reconcile the groups.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
