Zentyal 3.2 LDAP Authentication

Note: If you are looking for a how-to on Zentyal versions greater than 4.x, please see Zentyal 4.1 LDAP Authentication.

As you probably know if you are a user of Zentyal Server, between distributions there can be major changes, especially with the implementation of Samab4 starting in version 3.0. While I still believe that Zentyal Server is a good choice for a SOHO situation, it is hard to recommend to larger companies when we take into consideration the past upgrade woes we have endured namely with upgrading from the 2.x to 3.x versions. With that said, it is hard to beat for a single server setup. Only time will tell if the upgrade pains will be eased once running the 3.x branch. So lets get down to it. Zentyal’s main user database is LDAP based and every module installed locally uses that database for user authentication. That situation is fine if you are running a single server, however if you need to authenticate other applications against Zentyal, such as a Redmine Server, then you will need to make some adjustments to Zentyal. By default LDAP uses the port 389, the problem is, that Samba4 – which is part of Zentyal 3.2 – already uses this port so LDAP on Zentyal 3.2 is running on port 390. This is not documented to my knowledge but in the past LDAP was accessible on port 1390 in the 2.x editions so I took a look at services and noticed that LDAP was using port 390. Once at the firewall rules I also noted that LDAP was disabled by default as seen below.
ldap

From here I simply edited the rule to allow LDAP access. Once enabled, you should be able to authenticate against LDAP using the settings provided in “LDAP Settings” on Zentyal.

Did you find this article useful? Why not share it with your friends?

One thought on “Zentyal 3.2 LDAP Authentication

  1. Thanks!!
    Saved my day !
    We upgraded Zentyal and after that we could not login to our Redmine.
    This fixet it !! 🙂

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.