Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Group.Read.All Permissions Error #101

Open
lamb93 opened this issue Jan 30, 2025 · 17 comments
Open

Group.Read.All Permissions Error #101

lamb93 opened this issue Jan 30, 2025 · 17 comments

Comments

@lamb93
Copy link

lamb93 commented Jan 30, 2025

I am getting an error when attempting to use GroupMember.Read.All - Application level permission on the LDAP Wrapper. I am using this permission instead of Group.Read.All as my company will not allow us to use Group.Read.All as it is too intrusive. Will GroupMember.Read.All work instead?
@ahaenggli
Copy link
Owner

It would be easiest if you could just try it out.

@lamb93
Copy link
Author

lamb93 commented Feb 3, 2025

So it's working but I'm getting DNS errors when I try to complete the LDAP Bind.

@ahaenggli
Copy link
Owner

You have followed the instructions and now receive which message for which step exactly?

@lamb93
Copy link
Author

lamb93 commented Feb 3, 2025

So when I start the container it is restarting every 15 seconds. I am not able to get it to stay online. I am getting the attached errors.

ldap-wrapper-1-ver6-1.csv

@lamb93
Copy link
Author

lamb93 commented Feb 3, 2025

And yes, I followed the instructions you linked.

@ahaenggli
Copy link
Owner

thx for the log :) is the internet access blocked in any way? Maybe a proxy has to be used?

@lamb93
Copy link
Author

lamb93 commented Feb 4, 2025

That might be it. I am going to test in a location where we have more open outbound. I will let you know if I still have these errors. Thank you for the help so far!

@lamb93
Copy link
Author

lamb93 commented Feb 7, 2025

So I got the network issue resolved. Now I am getting an error on the LDAP Check Authentication when I am attempting to bind. The username and password are correct; when I click details it mentions something about a certificate. Is there something I am missing here?

@ahaenggli
Copy link
Owner

can you add the exact error message?

@lamb93
Copy link
Author

lamb93 commented Feb 11, 2025

Image

Image

@ahaenggli
Copy link
Owner

Try writing “uid=ldapwrapperbind” (I assume the user is set in the corresponding env var)

@lamb93
Copy link
Author

lamb93 commented Feb 11, 2025

same error

Image

@ahaenggli
Copy link
Owner

You are using the user ldapsearch this time. In the last printscreen it was ldapwrapperbind. Which one did you set in your env var?
You can also set the env var for debugging to true, this way you maybe get a hint in the log.

@lamb93
Copy link
Author

lamb93 commented Feb 11, 2025

we created a new container to ensure we hadn't missed any steps. The ldapsearch user is the one that is set in this container. I have attached the error log. I can't see anything that jumps out at me in the log.

ldap-wrapper-1-ver8-1.xlsx

@ahaenggli
Copy link
Owner

there are some error while trying to save the file azure.json. does the file exist in the mapped folder?
if not, did you choose the /docker/...ldap... path or something custom for the mapped folder? if you use some custom paths, make sure docker or everyone has read/write access.

@lamb93
Copy link
Author

lamb93 commented Feb 13, 2025
edited
Loading

It is mapped, and has permissions, but there is nothing in the mapped folder...

Image

Image

@ahaenggli
Copy link
Owner

Currently only read seems to be possible. In your 2nd printscreen, change everyone to read & write.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ahaenggli @lamb93