0

Erroneous pop-up 'use SSO button'

P.J. d 2 months ago updated 2 months ago 1

Hi

I'm trying to apply SSO and 2FA through the use of an LDAP proxy that triggers a 2FA request. I am aware that 2FA could be triggered by Filerun itself, but the SSO functionality of the LDAP proxy makes it the preferred option for now.
However, when pointing at the -working- LDAP proxy (by only changing the fqnd and port) instead of the LDAP back-end, the message 'Use SSO Button' pops-up.
I am not sure whether it is the response time, which is obviously longer for the 2FA enabled LDAP proxy than for the backend, or any other setting that is triggering the message to pop-up, but I think it should not be the case.

Has anyone experienced similar issues or has a clue what setting or parameter needs adjustment?

Update after some more testing: even with the LDAP proxy adjusted and not 2FA enabled, the 'use SSO button' message appears. 
The LDAP proxy is based on OpenLDAP and is configured to listen on a non-standard port (i.e. not 389 or 636), but I cannot find any suggestion that either of these characteristics are meant to trigger the message, but maybe I overlooked something?


I think it is justified to state that the LDAP proxy behaves as a normal LDAP server: it is confirmed to be working as expected (both with and without 2FA enabled) with other self-hosted apps that use LDAP authentication, such as Organizr, Subsonic and Jellyfin.