Is it possible to use a (read only) ldap bind user instead of anonymous bind?
I’m not sure what you mean, I’m not very familiar with ldap (despite implementing support in Plume), from what the internet seems to say, an anonymous bind is a bind with empty DN/password, which Plume is not doing (DN is computed from config and username, password is, well the user password).
If the 5
LDAP_* environment variables don’t provide what you need, it’s probably not implemented, and I’d welcome any ressource explaining better your request.
I’m also not familiar with ldap. I configured Jitsi with ldap and a bind user. Take a look at jitsi ldap configuration and LDAP_BINDDN / LDAP_BINDPW:
# LDAP user DN. Do not specify this parameter for the anonymous bind #LDAP_BINDDN=CN=binduser,OU=users,DC=example,DC=domain,DC=com # LDAP user password. Do not specify this parameter for the anonymous bind #LDAP_BINDPW=LdapUserPassw0rd
Yes, I’ll test it. I’d like to setup plume with ldap and bind user.
Binddn user is a read only ldap user to authenticate and than check the right user credentials. I use it with search filter to check group membership (“memberof”). Could you try similar config as jitsi? Search filter with binddn should be most flexible?
Deleting a branch is permanent. It CANNOT be undone. Continue?