Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is there support for Windows LAPS? #27

Open
needthisforctf opened this issue Oct 24, 2024 · 3 comments
Open

Is there support for Windows LAPS? #27

needthisforctf opened this issue Oct 24, 2024 · 3 comments

Comments

@needthisforctf
Copy link

needthisforctf commented Oct 24, 2024
edited
Loading

I'm running LAPS-WebUI using Docker on Linux, connection to ldap goes through, I can login with my username, but search for any ComputerName yields no results despite computers clearly being under SearchBase DN. No errors in logs.

I low-key suspect that the issue arises due to the fact that I'm using Windows LAPS instead of now deprecated Microsoft LAPS, but can't say for sure.

My docker-compose:

services:
    laps-webui:
        restart: always
        image: ghcr.io/seji64/laps-webui:1.6
        ports:
            - 8080:8080
        environment:
            - Domains__0__Name=Contoso
            - Domains__0__Ldap__Server=dc01.contoso.loc
            - Domains__0__Ldap__Port=636
            - Domains__0__Ldap__UseSSL=true
            - Domains__0__Ldap__TrustAllCertificates=true
            - Domains__0__Ldap__SearchBase='OU=Depts,OU=Contoso,DC=contoso,DC=loc'
@Seji64
Copy link
Owner

Seji64 commented Oct 24, 2024
edited
Loading

Anything in the Container log? Are you sure you have enabled LDAPS on your Domain Controller? (Maybe Go First with 389)

@needthisforctf
Copy link
Author

OK, so LDAPS is enabled, but certificate is self-signed and root CA is not imported on docker machine, so I decided to do as you said and try 389 — still doesn't work, still in the same way. Nothing too sus in logs of the container:

laps-webui-1  | [19:16:12 WRN] Storing keys in a directory '/home/app/.aspnet/DataProtection-Keys' that may not be persisted outside of the container. Protected data will be unavailable when container is destroyed. For more information go to https://aka.ms/aspnet/dataprotectionwarning
laps-webui-1  | [19:16:12 WRN] Storing keys in a directory '/home/app/.aspnet/DataProtection-Keys' that may not be persisted outside of the container. Protected data will be unavailable when container is destroyed. For more information go to https://aka.ms/aspnet/dataprotectionwarning
laps-webui-1  | [19:16:12 WRN] No XML encryptor configured. Key {***} may be persisted to storage in unencrypted form.
laps-webui-1  | [19:16:12 WRN] No XML encryptor configured. Key {***} may be persisted to storage in unencrypted form.
laps-webui-1  | [19:16:39 WRN] Failed to determine the https port for redirect.
laps-webui-1  | [19:16:39 WRN] Failed to determine the https port for redirect.
laps-webui-1  | [19:16:40 INF] HTTP GET / responded 200 in 429.7660 ms
laps-webui-1  | [19:16:40 INF] HTTP GET / responded 200 in 429.7660 ms
laps-webui-1  | [19:16:40 INF] HTTP GET /_framework/blazor.server.js responded 200 in 30.7275 ms
laps-webui-1  | [19:16:40 INF] HTTP GET /_framework/blazor.server.js responded 200 in 30.7275 ms
laps-webui-1  | [19:16:40 INF] HTTP GET /_blazor/initializers responded 200 in 6.2545 ms
laps-webui-1  | [19:16:40 INF] HTTP GET /_blazor/initializers responded 200 in 6.2545 ms
laps-webui-1  | [19:16:40 INF] HTTP POST /_blazor/negotiate responded 200 in 13.3014 ms
laps-webui-1  | [19:16:40 INF] HTTP POST /_blazor/negotiate responded 200 in 13.3014 ms
laps-webui-1  | [19:16:42 INF] HTTP GET /healthz responded 200 in 9.6422 ms

@needthisforctf
Copy link
Author

@Seji64, anything on this?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Seji64 @needthisforctf