[
https://issues.apache.org/jira/browse/GUACAMOLE-1985?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17884983#comment-17884983
]
Nick Couchman commented on GUACAMOLE-1985:
------------------------------------------
[~armfem]: Can you clarify what types of objects you're trying to be able to
access in LDAP? Are you storing connections in LDAP? Or are you just trying to
be able to see (and assign) users and groups permissions and be able to see the
ones listed in LDAP?
I put this as a low-priority "wish", and will probably reword it, some, because
I don't think it's a terribly common configuration and I'm not sure it's going
to get a lot of attention in terms of development, unless you're willing to
take a go at it, yourself.
> There is no account reconciliation between OIDC and LDAP
> --------------------------------------------------------
>
> Key: GUACAMOLE-1985
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1985
> Project: Guacamole
> Issue Type: Wish
> Components: guacamole-auth-ldap
> Environment: LDAP: AD
> SSO: OIDC with LemonLDAP
> Reporter: armfem
> Priority: Minor
>
> Bonjour,
>
> I had configured guacamole users through LDAP, which work very nice. Then I
> added an SSO (LemonLDAP) which is connected via OIDC to guacamole. Which also
> seems to work quite nice to access it.
> The problem is that when connecting through OIDC I cannot access the users
> that are in LDAP, there are only users already connected through OIDC.
> Furthermore, it seems that the OIDC user is not reconciled with same name
> LDAP user.
>
> For the time being, I avoid the problem creating a group in LDAP and a group
> in Guacamole, and then the application is able to reconcile the groups.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
