Debian 11 Bullseye
Sponsored Link

NextCloud : Active Directory Integration
2021/09/24
 
Configure NextCloud with Windows Active Directory Integration to login to NextCloud with AD user accounts.
[1]
Install and run Active Directory in your local network, refer to here.
This example is based on the environment like follows.
Domain Server : Windows Server 2019
Domain Name : srv.world
Hostname : fd3s.srv.world
NetBIOS Name : FD3S01
Realm : SRV.WORLD
[2] Configure NextCloud to access to AD Server from PHP scripts.
root@dlp:~#
apt -y install php-ldap
root@dlp:~#
systemctl restart php7.4-fpm

[3] On Active Directory side, create an AD user for binding from NextCloud Server.
It's OK to grant [Domain Users] rights only for it.
On this example, it creates [nextcloud] user like follows.
[4] Login to NextCloud Web with admin account and open [Apps].
[5] Select [Your apps] on the left pane and Click [Enable] button on [LDAP user and group backend] section.
[6] After enabling [LDAP user and group backend], open settings again and select [Administration] - [LDAP / AD integration] on the left pane.
[7] Input AD server's information to connect.
Input AD's hostname or IP addreess and Base DN, credencials of AD user for binding created in [3], and then click [Save Credencials] button.
Next, Click [Test Base DN] button and if [Configuration OK] message is displayed like follows, that's OK, Click [Continue] to proceed.
[8] Configure on [Users] tab.
It's OK with default setting if you don't have specific requirements.
Confirm [Configuration OK] and Click [Continue] to proceed.
[9] Configure on [Login Attributes] tab.
It's OK with default setting if you don't have specific requirements.
Confirm [Configuration OK] and Click [Continue] to proceed.
[10] Configure on [Groups] tab.
If you'd like to limit groups they can search AD directory, configure here.
But it's OK with default setting if you don't have specific requirements.
Confirm [Configuration OK] and finish configuration for admin account.
[11] Move to Login form and specify an AD user.
[12] If configuration OK, it's possbile to login to NextCloud with AD users like follows.
Matched Content