Hi,
we are using LDAP authentication. A few days due to an internal reorganization ago my LDAP DN has changed. When running ldapsearch
on the GitLab server, the correct new DN is shown. However GitLab still shows the old DN in the “LDAP uid” field and hence my account is locked. I have updated and restarted GitLab since to no avail. Currently we run GitLab 11.0.3-ce.0 on Debian 8 Jessie.
The LDAP configuration in /etc/gitlab/gitlab.rb
is:
gitlab_rails['ldap_servers'] = YAML.load <<-'EOS' # remember to close this block with 'EOS' below
main: # 'main' is the GitLab 'provider ID' of this LDAP server
label: 'XXXX'
host: 'our.ldap.server'
port: 389
uid: 'sAMAccountName'
method: 'tls'
bind_dn: 'cn=ldap,cn=Users,dc=ad,dc=xxxx,dc=xxxx'
password: 'xxxx'
active_directory: true
allow_username_or_email_login: false
block_auto_created_users: false
base: 'dc=ad,dc=xxxx,dc=xxxx'
user_filter: '(|(memberof=...))'
attributes:
username: ['uid', 'userid', 'sAMAccountName']
email: ['mail', 'email', 'userPrincipalName']
name: 'cn'
first_name: 'givenName'
last_name: 'sn'
## EE only
group_base: ''
admin_group: ''
sync_ssh_keys: false
EOS
How can we force an update of the LDAP uid in GitLab?
f.