https://github.com/lldap/lldap logo
Join Discord
Powered by
Hey I'm trying to setup the LDAP plugin for jel...
# troubleshooting
r
Hey I'm trying to setup the LDAP plugin for jellyfin. I have a LLDAP server running and I've created a media group which I've added some users. When I test and query for the users it's sucessful. But when I try to log into jellyfinI get invalid username. What am I doing wrong, why can't I sign in?

https://cdn.discordapp.com/attachments/992916353847668756/1141120900159254729/image.png

https://cdn.discordapp.com/attachments/992916353847668756/1141120900465446942/image.png

https://cdn.discordapp.com/attachments/992916353847668756/1141120901098778664/image.png

n
Here's a brand new thread for you! Please keep the discussion for this problem in this thread.
n
Sanity check: can you log in via the LLDAP web interface?
r
good shout, I tried it and that works

https://cdn.discordapp.com/attachments/1141120901321085048/1141123396944539658/image.png

https://cdn.discordapp.com/attachments/1141120901321085048/1141123604856176853/image.png

n
Next step: what are the LLDAP verbose logs when you try to log in via jellyfin?
Also, what's your jellyfin config?
r
i was trying to find the logs but there's so many pods, any ideas which one it would be ?

https://cdn.discordapp.com/attachments/1141120901321085048/1141123806136639638/image.png

hmm what format should I tell you my jellyfin config?
n
LLDAP works as a single container, I don't know what all those pods are
r
I'm currently running it on truenas scale as a truecharts app which is probably why it has all those pods, I'll dig through them all then
n
Maybe screenshot? The LDAP part
Oh, you have several instances of LLDAP talking to the same DB. How did you set up the server secret/private key? With a file or a seed?
r

https://cdn.discordapp.com/attachments/1141120901321085048/1141124457847607416/image.png

https://cdn.discordapp.com/attachments/1141120901321085048/1141124458178936852/image.png

https://cdn.discordapp.com/attachments/1141120901321085048/1141124458581610637/image.png

https://cdn.discordapp.com/attachments/1141120901321085048/1141124458854236232/image.png

n
And make sure that it's the same on every pod, either the file is mounted everywhere or the seed is the same (seed is easier in HA setups)
r
https://truecharts.org/charts/enterprise/authelia/Setup-Guide/ i followed these guides and they go step by step, so I just filled in all the info. I understand that this is not the basic lldap configuration so I don't expect you to read it. I entered the LDAP base DN, a user DN, email, password, and my domain/public URL
n
(that's not the problem, but I think your admin settings are wrong: leave the base DN empty, and put the filter you currently have there in the line below, instead of the enabledService)
Do you have a link to the chart?
Not the doc but the implementation
Found it
So it's using a file with a shared mount
Can you check in the lldap-main-1 and 2 if the hash of the /data/server_key file is the same?
r
Yep will check in a moment sorry, baby duties call
n
Sorry, /data/private_key
r
hi sorry I'm not able to find that file
I can see a server.key

https://cdn.discordapp.com/attachments/1141120901321085048/1141133157073170492/image.png

okay, I have no idea why it fixed it, but I rebooted my jellyfin server and now I can log in
I do have to click 
Manual Login
though but I assume that's just a shortcoming of the plugin as it's not using the built-in jellyfin user system

https://cdn.discordapp.com/attachments/1141120901321085048/1141134236867371119/image.png

n
It might be a question of which instance you're hitting
If they have different server keys, you'll be able to log in 50 percent of the time, when you hit one rather than the other
In the LLDAP containers, you should have a /data folder
I'm guessing that cnpg is a database, presumably postgres
r
ahh I see, I'll have to dig properly through all the pods and their containers to find that /data folder, but it seems to be working the 10 tries i just did
n
Still, I'd really make sure that the private key is the same
r
okay, I'll do that first thing in the morning. I really appreciate your help tonight!
n
I've got a baby in my arms, that leaves nothing to do and a free hand 😄
r
haha I totally understand
I very quickly just sh'd into one of the pods and found the private_key file but I can't seem to cat it out

https://cdn.discordapp.com/attachments/1141120901321085048/1141136093492805634/image.png

https://cdn.discordapp.com/attachments/1141120901321085048/1141136093794803942/image.png

n
It's not really readable, try to compare the hash
Maybe Sha 1
r
ah okay
n
Or hex dump it
r
yep just sha1sum'd them and they both match
n
Good!
r
Sweet, sounds like a great success!
n
Then it should work!
Cheers
r
thank you so so much
You're so knowledgeable
PreviousNext
Powered by