Zentyal 2 LDAP as accounts provider

Hi @davidp,
unfortunately are out of the office, sorry for the delay.
Zentyal Core version 2.2.11 (very old, ubuntu 10.04)
At the moment I do not have access to the NS, but I remember that Zentyal has no admin user.

Then I have other difficulties:

  1. Zentyal LDAP runs without TLS / SSL and sssd not allow authentication
  2. In Zentyal, the groups have an email address and the members of the groups are automatically routed.
    The first point I resolved with LDAP over SSL, it is cumbersome but you can do.
    For the second point I’m looking for a solution …
1 Like

Did you set ldaps:// in “Accounts provider > Advanced settings”?

On ns6 was the same. On ns7 we cannot implement the same feature, but you could try one of the following solutions:

  • distribution list: define a mail alias and select a group as destination: when you save the group is immediately expanded to its members. It’s like you enter the members one by one.

  • shared mailbox: create a shared mailbox and assign it to a group. Then create a mail alias and select the shared mailbox as destination: members of the group can see the shared mailbox from their IMAP clients.

1 Like

In fact I did so. The problem was to tell Zentyal to go LDAP over SSL

thanks a lot, that solves everything. :heart_eyes:

does not work :disappointed:
but we know why:
file: /usr/libexec/nethserver/list-group-members

line 66 
-'memberfilter' => '(objectClass=shadowsAccount)'
+'memberfilter' => '(objectClass=posixAccount)'


Right! It was already added to the PR!

It will be released soon!

I just released the rpm in testing repository.

It works correctly in my machine, @gondrano could you install the upgrade when you have a little time?

Just execute:

yum --enablerepo=nethserver-testing update nethserver-sssd

A post was split to a new topic: Zentyal 2 as remote LDAP accounts provider

Great piece of work @gondrano! I’d like to move it into #howto category!

1 Like


1 Like

Fix released in nethserver-updates:


This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.