i did same settings but users are not replicated. My odoo11 is with NS reverse proxy and hosted on same server, as followed your post. please see below settings. Please help me to resolve this.
There’s no replication of all users.
When you login to Odoo with an LDAP user the first time, the user is created from the template user in the odoo database.
Hi @mrmarkuz,
I couldn’t understand this point of integration. NS has Ldap and Odoo is connected with NS Ldap, Conceptually NS users should login in odoo and odoo users should login in NS.
why if you create a user with Odoo not be able to use the same login credential for Mattermost or nextcloud or email or other services in NS7 vice-versa.
Please clear my doubts. Great thanks to you.
I’m sorry, this is how the Odoo module works.
On Odoo login, the user login is checked against the odoo database. If there’s no user entry then LDAP is searched. If the user is in LDAP database it is created in the odoo database.
Why do you need replication of all users?
If you create a user on Nethserver, you can login to Odoo with this user like you can login to Nextcloud.
Management of LDAP users should be done with Nethserver and not in the served applications.
Hi @mrmarkuz
i have added all setting of NS LDAP and both (NS+odoo) are on the same server. As followed ldap creds.
[root@cloud odoo]# account-provider-test dump
{
“BindDN” : “cn=ldapservice,dc=directory,dc=nh”,
“LdapURI” : “ldap://127.0.0.1”,
“DiscoverDcType” : “dns”,
“StartTls” : “”,
“port” : 389,
“host” : “127.0.0.1”,
“isAD” : “”,
“isLdap” : “1”,
“UserDN” : “ou=People,dc=directory,dc=nh”,
“GroupDN” : “ou=Groups,dc=directory,dc=nh”,
“BindPassword” : “_8CNwb_SkSf9cHkZ”,
“BaseDN” : “dc=directory,dc=nh”,
“LdapUriDn” : “ldap:///dc%3Dzenlab%2Cdc%3Dit”
}
But when i am integrating with odoo Ldap module and written all settings into required fields. But i am not getting any successfull logs, pls go through my logs.
Please check if you use a correct LDAP filter.
In your screenshot you use an LDAP filter for Active Directory. In LDAP uid is used instead of samaccountname.
I tested on a fresh Nethserver VM with LDAP (not AD) and Odoo 11 and still can’t reproduce.
The “Login failed” error is normal at first login but the next log line should be about creating a new Odoo user:
INFO odoo odoo.addons.base.res.res_users: Login failed for db:odoo login:odoouser2 from 127.0.0.1
DEBUG odoo odoo.addons.auth_ldap.models.res_company_ldap: Creating new Odoo user "odoouser2" from LDAP
The LDAP user now should be logged in. At next login you should see following line:
INFO odoo odoo.addons.base.res.res_users: Login successful for db:odoo login:odoouser2 from 127.0.0.1
It seems your LDAP module is not working because the Odoo user is not created.
Just a blind shot, do you use special characters in the user passwords?
Please share your odoo log in text format with a tool like pastebin (don’t forget to hide passwords)
AFAIK, you need to get a valid SSL for your AD (Easy enough if running on NethServer).
A lot of Apps, especially Java and PHP programmed stuff, which can use AD require a valid SSL.
Here’s the link about AD n NethServer:
Search for the sub-title " The next step will make sure that java and other more strict apps can connect to the AD and use it :"…
You will still need to change the LDAP into LDAPs in the query, and also change the LDAP Port to 636.
Dirección del servidor LDAP ldaps://192.168.86.4
Puerto de servidor LDAP 636
As to TLS: you may need to try both options, I think TLS should work.
Good Luck!
I have this working at home, not for Odoo, but a similiar “strict” App…