I’m running into an issue with dex authentication against LDAP.
dex: connectors: - type: ldap id: ldap name: LDAP config: host: ldap.rcc.fsu.edu insecureSkipVerify: true bindDN: ****** bindPW: ****** userSearch: baseDN: ou=people,dc=rcc,dc=fsu,dc=edu filter: "(objectClass=posixAccount)" username: uid idAttr: uid emailAttr: mail nameAttr: uid preferredUsernameAttr: uid groupSearch: baseDN: dc=rcc,dc=fsu,dc=edu filter: "(objectClass=posixGroup)" userMatchers: - userAttr: DN groupAttr: cn
My uid is
cam02h, but my email address is
firstname.lastname@example.org. When I try to login with this configuration, I get the following message:
Error -- can't find user for cmclaughlin Run 'nginx_stage --help' to see a full list of available command line options.
It appears that the user mapping is based off everything before the “@” in the email address.
When I change my email address to match my uid (email@example.com), I can successfully login and see the dashboard.
Is there any way to allow dex logins where the email doesn’t match the uid?