Skip to Content.
Sympa Menu

en - [sympa-users] LDAP auth question

en@sympa.community

Subject: The mailing list for listmasters using Sympa

List archive

Chronological Thread  
  • From: maximatt <address@concealed>
  • To: sympa-users <address@concealed>
  • Subject: [sympa-users] LDAP auth question
  • Date: Tue, 21 Apr 2009 12:02:46 -0300

hi....

i have some problems to autenticate my users, wich are stored in LDAP
server....

i use the followin DIT:

dc=maximatt,dc=test,dc=org
|- cn=MailUsers
: |-cn=bindmailUsers
|-uid=postmaster
|-uid=toto1
|-uid=toto2
:

i have defined an ACL under (cn=MailUsers,dc=maximatt,dc=test,dc=org)
to grant acces to these entry (and subs) only if the conexions binds
with "binMailUsers"... so, in these context i set the following
parameters under "auth.conf" file:

ldap
host maximatt.test.org
port 389
timeout 30
bind_dn
cn=bindmailUsers,dc=maximatt,dc=test,dc=org
bind_password esta_no_es
suffix
cn=mailUsers,dc=maximatt,dc=test,dc=org
scope sub
# get_dn_by_uid_filter (&(mail=[sender])(disablesmtp=FALSE))
get_dn_by_email_filter (&(mail=[sender])(disablesmtp=FALSE))
email_attribute mail
# use_ssl 1
# ssl_version tlsv1
# ssl_ciphers MEDIUM:HIGH

so... when i try to autenticate the users, sympa's log show the
following messages:

Apr 21 11:47:02 maximatt wwsympa[8835]: WWSympa started
Apr 21 11:47:02 maximatt wwsympa[8835]: [robot maximatt.test.org]
[client 192.168.140.1] main::do_login()
do_login(address@concealed)
Apr 21 11:47:02 maximatt wwsympa[8835]: Auth::ldap_authentication() No
entry in the Ldap Directory Tree of maximatt.test.org
Apr 21 11:47:02 maximatt wwsympa[8835]: Auth::authentication()
authentication: incorrect password for user address@concealed
Apr 21 11:47:02 maximatt wwsympa[8835]: main::do_login() Authentication failed
Apr 21 11:47:02 maximatt wwsympa[8835]: [robot maximatt.test.org]
[client 192.168.140.1] main::do_loginrequest() do_loginrequest

i test the conections with ldap search whit these paramentes, and
trace the conecction with ethereal and all are ok....

¿how could be wrong?

if i make an interpretation of
"http://www.sympa.org/manual/authentication"; these document like tell
that symba binds with the users that i want to autenticate... ¿these
is correct?

thanks in advance!!!

-
Salu2 ;)




Archive powered by MHonArc 2.6.19+.

Top of Page