There should be an ldap module, here are some configuration hints:
You can get the needed LDAP/AD information in old server manager “domain accounts” or new server manager in “users and groups/details” or on command line with account-provider-test dump
Very Nice post, and also i have followed same post for odoo11 installation. Installation done successfully without an error. All services systemctl start odoo11 showing status active.
netstat -tulnp is also showing 8069 port occupied.
EVEN ALL FIREWALL THING IS DISABLED.
BUT I AM NOT ABLE TO ACCESS WEBPAGE ON MY BROWSER - http:// url:8069
This is solved by using reverse proxy defined virtual host.
Problem solved !
BUT I WANT TO INTEGRATE WITH NS LDAP with odoo Ldap plugin.
i have filled all info provided by this command “account-provider-test dump” LDAP info in odoo ldap plugin but still user is not syncing with each other.
please support to find this problem .
i did same settings but users are not replicated. My odoo11 is with NS reverse proxy and hosted on same server, as followed your post. please see below settings. Please help me to resolve this.
There’s no replication of all users.
When you login to Odoo with an LDAP user the first time, the user is created from the template user in the odoo database.
Hi @mrmarkuz,
I couldn’t understand this point of integration. NS has Ldap and Odoo is connected with NS Ldap, Conceptually NS users should login in odoo and odoo users should login in NS.
why if you create a user with Odoo not be able to use the same login credential for Mattermost or nextcloud or email or other services in NS7 vice-versa.
Please clear my doubts. Great thanks to you.
I’m sorry, this is how the Odoo module works.
On Odoo login, the user login is checked against the odoo database. If there’s no user entry then LDAP is searched. If the user is in LDAP database it is created in the odoo database.
Why do you need replication of all users?
If you create a user on Nethserver, you can login to Odoo with this user like you can login to Nextcloud.
Management of LDAP users should be done with Nethserver and not in the served applications.
Hi @mrmarkuz
i have added all setting of NS LDAP and both (NS+odoo) are on the same server. As followed ldap creds.
[root@cloud odoo]# account-provider-test dump
{
“BindDN” : “cn=ldapservice,dc=directory,dc=nh”,
“LdapURI” : “ldap://127.0.0.1”,
“DiscoverDcType” : “dns”,
“StartTls” : “”,
“port” : 389,
“host” : “127.0.0.1”,
“isAD” : “”,
“isLdap” : “1”,
“UserDN” : “ou=People,dc=directory,dc=nh”,
“GroupDN” : “ou=Groups,dc=directory,dc=nh”,
“BindPassword” : “_8CNwb_SkSf9cHkZ”,
“BaseDN” : “dc=directory,dc=nh”,
“LdapUriDn” : “ldap:///dc%3Dzenlab%2Cdc%3Dit”
}
But when i am integrating with odoo Ldap module and written all settings into required fields. But i am not getting any successfull logs, pls go through my logs.
Please check if you use a correct LDAP filter.
In your screenshot you use an LDAP filter for Active Directory. In LDAP uid is used instead of samaccountname.
I tested on a fresh Nethserver VM with LDAP (not AD) and Odoo 11 and still can’t reproduce.
The “Login failed” error is normal at first login but the next log line should be about creating a new Odoo user:
INFO odoo odoo.addons.base.res.res_users: Login failed for db:odoo login:odoouser2 from 127.0.0.1
DEBUG odoo odoo.addons.auth_ldap.models.res_company_ldap: Creating new Odoo user "odoouser2" from LDAP
The LDAP user now should be logged in. At next login you should see following line:
INFO odoo odoo.addons.base.res.res_users: Login successful for db:odoo login:odoouser2 from 127.0.0.1
It seems your LDAP module is not working because the Odoo user is not created.
Just a blind shot, do you use special characters in the user passwords?
Please share your odoo log in text format with a tool like pastebin (don’t forget to hide passwords)
AFAIK, you need to get a valid SSL for your AD (Easy enough if running on NethServer).
A lot of Apps, especially Java and PHP programmed stuff, which can use AD require a valid SSL.
Here’s the link about AD n NethServer:
Search for the sub-title " The next step will make sure that java and other more strict apps can connect to the AD and use it :"…
You will still need to change the LDAP into LDAPs in the query, and also change the LDAP Port to 636.
Dirección del servidor LDAP ldaps://192.168.86.4
Puerto de servidor LDAP 636
As to TLS: you may need to try both options, I think TLS should work.
Good Luck!
I have this working at home, not for Odoo, but a similiar “strict” App…