I try to setup ldap on the enterprise edition of mattermost 3.3.0. with AD 2012 R2
my current setup is this:
"LdapSettings": {
"Enable": true,
"LdapServer": "agartha.domain.com",
"LdapPort": 389,
"ConnectionSecurity": "",
"BaseDN": "dc=domain,dc=com",
"BindUsername": "mattermost@domain.com",
"BindPassword": "password",
"UserFilter": "",
"FirstNameAttribute": "givenname",
"LastNameAttribute": "sn",
"EmailAttribute": "mail",
"UsernameAttribute": "saMAccountName",
"NicknameAttribute": "",
"IdAttribute": "saMAccountName",
"SyncIntervalMinutes": 60,
"SkipCertificateVerification": false,
"QueryTimeout": 60,
"MaxPageSize": 500,
"LoginFieldName": ""
I try to change user filter to (objectClass=user) or the one in the exemple (&(objectCategory=Person)(!(UserAccountControl:1.2.840.113556.1.4.803:=2))) without success.
when I check the log I found something strange.
when I try with a active user in AD
EDT] [EROR] /api/v3/users/login:findUser code=401 rid=7e8tshxzrfynikdwbc8ujdjdqw uid= ip=172.16.32.66 User not registered on LDAP server [details: username=]
when I try to login with a invalid user
EDT] [EROR] /api/v3/users/login:findUser code=400 rid=hs3nr4ay1jd69n8rizscytptsa uid= ip=172.16.32.66 User not registered on LDAP server [details: username=test2]
I see the sync is working ( i guess )
2016/08/16 17:36:40 EDT] [DEBG] /api/v3/admin/ldap_sync_now
[2016/08/16 17:36:40 EDT] [INFO] LDAP Synchronization completed