https://bugs.openldap.org/show_bug.cgi?id=10252

Quanah Gibson-Mount quanah@openldap.org changed:

What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Keywords|needs_review | Resolution|--- |INVALID

--- Comment #1 from Quanah Gibson-Mount quanah@openldap.org --- Hello,

The ITS system is for reporting bugs, not usage questions. Questions such as this should be sent to the openldap-technical mailing list. You can sign up at https://lists.openldap.org/

https://bugs.openldap.org/show_bug.cgi?id=10252

--- Comment #2 from Ajay kumar ajay41.kumar@airtel.com --- Hi Team, I get stuck at configuring Openldap schema includes the memberOf overlay for groups and that the following requirements to satisfied:

Synced groups must have the groupOfNames object class. Synced groups must list their members by DN (directoryName) via the member attribute. Synced groups must have a cn attribute, used as the Duo group name after import. Synced groups must also have the attributes entrydn (used as the distinguished name) and entryuuid (the group unique identifier). Synced users must list group memberships by DN using the memberOf attribute. Synced users must have the organizationalPerson object class.

We are trying to enable Multifactor authentication using duo auth proxy & duo admin panel configuration for ldap users.

Ldap server is getting synced successfully with Duo admin portal but groups and users details not getting fetched at duo admin portal. Duo support team mentioned to change ldap configuration as mention in below mentioned article. Can you share some reference document to make required changes.

https://duo.my.site.com/s/article/4529?language=en_US

Regards, Ajay Kumar Engineering Cloud Ops | Bharti Airtel Ltd. Mob.: +91 8510020994

-----Original Message----- From: openldap-its@openldap.org openldap-its@openldap.org Sent: Tuesday, August 13, 2024 8:08 PM To: Ajay Kumar Ajay41.Kumar@airtel.com Subject: [Issue 10252] Unable to fetch groups and users at duo admin panel for enabling MFA for Ldap users

[CAUTION: External Email] Do not click links or open attachments unless you recognize the sender and know the content is safe.

https://bugs.openldap.org/show_bug.cgi?id=10252

Quanah Gibson-Mount quanah@openldap.org changed:

What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED

-- You are receiving this mail because: You reported the issue. *********************************************************************************************************************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited . The information contained in this mail is propriety and strictly confidential. ***********************************************************************************************************************************************************************