Uploaded image for project: 'Openmeetings'
  1. Openmeetings
  2. OPENMEETINGS-697

Authentification Ldap

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.1.0 Apache Release, 2.1.1 Apache Release
    • 3.0.3, 4.0.0
    • LDAP
    • OS Debian wheezy

    Description

      Hello,

      I have trouble with ldap authentication.
      My ldap authentication works with openmeetings 2.0 but doesn't work since 2.1 (also tried 2.1.1).

      Below are ldap logs with "stats" level enabled.

      Logs for 2.0 :

      Jul 9 12:41:46 ldapserver slapd[11612]: conn=42 fd=46 ACCEPT from IP=1.2.3.4:43818 (IP=1.2.3.5:389)
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=42 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=42 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=42 op=0 RESULT tag=97 err=0 text=
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 fd=47 ACCEPT from IP=1.2.3.4:43819 (IP=1.2.3.5:389)
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 op=0 RESULT tag=97 err=0 text=
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 op=1 SRCH base="ou=company,dc=medint,dc=local" scope=2 deref=3 filter="(uid=username)"
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=43 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=44 fd=48 ACCEPT from IP=1.2.3.4:43820 (IP=1.2.3.5:389)
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=44 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=44 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=44 op=0 RESULT tag=97 err=0 text=
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=45 fd=49 ACCEPT from IP=1.2.3.4:43821 (IP=1.2.3.5:389)
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=45 op=0 BIND dn="uid=username,ou=company,dc=medint,dc=local" method=128
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=45 op=0 BIND dn="uid=username,ou=company,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 12:41:46 ldapserver slapd[11612]: conn=45 op=0 RESULT tag=97 err=0 text=

      Logs for 2.1 and 2.1.1 :

      Jul 9 13:13:23 ldapserver slapd[11612]: conn=75 fd=63 ACCEPT from IP=1.2.3.4:58686 (IP=1.2.3.5:389)
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=75 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=75 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=75 op=0 RESULT tag=97 err=0 text=
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 fd=64 ACCEPT from IP=1.2.3.4:58687 (IP=1.2.3.5:389)
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 op=0 RESULT tag=97 err=0 text=
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 op=1 SRCH base="ou=company,dc=medint,dc=local" scope=2 deref=3 filter="(uid=username)"
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=76 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=77 fd=65 ACCEPT from IP=1.2.3.4:58688 (IP=1.2.3.5:389)
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=77 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" method=128
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=77 op=0 BIND dn="cn=dummy,ou=external users,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=77 op=0 RESULT tag=97 err=0 text=
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 fd=66 ACCEPT from IP=1.2.3.4:58689 (IP=1.2.3.5:389)
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 op=0 BIND dn="uid=username,ou=company,dc=medint,dc=local" method=128
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 op=0 BIND dn="uid=username,ou=company,dc=medint,dc=local" mech=SIMPLE ssf=0
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 op=0 RESULT tag=97 err=0 text=
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 op=1 SRCH base="ou=company,dc=medint,dc=local" scope=2 deref=3 filter="(uid=username)"
      Jul 9 13:13:23 ldapserver slapd[11612]: conn=78 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=

      There are only two different lines :

      Jul 9 12:38:08 ldapserver slapd[11612]: conn=40 op=1 SRCH base="ou=company,dc=medint,dc=local" scope=2 deref=3 filter="(uid=username)"
      Jul 9 12:38:08 ldapserver slapd[11612]: conn=40 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=

      Users aren't allowed to search and view these informations, resulting in an unknown user error on login. Exact error in french is : "Nom d'utilisateur inconnu".

      Attachments

        Activity

          People

            solomax Maxim Solodovnik
            sqli Sqli
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: