Skip to Content.
Sympa Menu

en - Re: [sympa-users] Problem wich LDAP

Subject: The mailing list for listmasters using Sympa

List archive

Re: [sympa-users] Problem wich LDAP

Chronological Thread  
    < Chronological >       < Thread >
  • From: Nadilson Santana <address@concealed>
  • To: Steve Shipway <address@concealed>
  • Cc: "address@concealed" <address@concealed>
  • Subject: Re: [sympa-users] Problem wich LDAP
  • Date: Thu, 22 Nov 2012 09:42:17 -0300
Hi, Thanks for the help.

Still giving error, below is the configuration and error logs.

ldap
        regexp                          .*
        host                            intranet.ufba.br:389
        timeout                         20
        bind_dn                         cn=linuxbind,dc=intranet,dc=ufba,dc=br
        bind_password                   xxxxx
        suffix                          dc=intranet,dc=ufba,dc=br
        get_dn_by_uid_filter            (uid=[sender])
        get_dn_by_email_filter          (mail=[sender])
        email_attribute                 mail
        scope                           sub
        scope 

use_ssl                          1
Login without @ufba.br

Nov 22 09:37:33 anguera wwsympa[32213]: [robot listas.ufba.br] [session 27231476015062] [client 10.88.0.27] main::do_login() do_login(nadilson.santana)
Nov 22 09:37:33 anguera wwsympa[32213]: tools::valid_email() Invalid email address 'nadilson.santana'
Nov 22 09:37:33 anguera wwsympa[32213]: Auth::check_auth() Incorrect Ldap password
Nov 22 09:37:33 anguera wwsympa[32213]: main::do_login() Authentication failed
Nov 22 09:37:33 anguera wwsympa[32213]: [robot listas.ufba.br] [session 27231476015062] [client 10.88.0.27] main::do_renewpasswd() do_renewpasswd(nadilson.santana)
Nov 22 09:37:33 anguera wwsympa[32213]: tools::valid_email() Invalid email address 'nadilson.santana'
Nov 22 09:37:33 anguera wwsympa[32213]: [robot listas.ufba.br] [session 27231476015062] [client 10.88.0.27] main::do_renewpasswd() do_renewpasswd: incorrect email \"nadilson.santana\"


Login with @ufba.br
Nov 22 09:38:25 anguera wwsympa[32213]: Auth::authentication() authentication: incorrect password for user address@concealed
Nov 22 09:38:25 anguera wwsympa[32213]: main::do_login() Authentication failed
Nov 22 09:38:25 anguera wwsympa[32213]: [robot listas.ufba.br] [session 10612724120324] [client 10.88.0.27] main::do_renewpasswd() do_renewpasswd(address@concealed)


2012/11/21 Steve Shipway <address@concealed>

Here’s how we do it, for reference:

 

ldap

        regexp                           @.*auckland(uni)?\.ac\.nz

        host                                 ldap-vip.auckland.ac.nz:636

        timeout                         20

        bind_dn                         cn=sympa,ou=webapps,ou=ec,o=uoa

        bind_password           xxxxxxxxxxx

        suffix                              ou=ec_users,dc=ec,dc=auckland,dc=ac,dc=nz

        get_dn_by_email_filter          (mail=[sender])

        email_attribute          mail

        scope                             one

        use_ssl                          1

 

Note that the port is 636 for SSL-enabled LDAP, and that we’re using an application DN to bind before searching (as our LDAP doesn’t allow anonymous searching).  We also use the regexp to make sure that only our local site email addresses use the LDAP, as others will fall through to the separate definition for the local database (the user_table section below).

 

Steve

 

Steve Shipway

ITS Unix Services Design Lead

University of Auckland, New Zealand

Floor 1, 58 Symonds Street, Auckland

Phone: +64 (0)9 3737599 ext 86487

DDI: +64 (0)9 924 6487

Mobile: +64 (0)21 753 189

Email: address@concealed

P Please consider the environment before printing this e-mail : 打印本邮件,将减少一棵树存活的机会

 

From: address@concealed [mailto:address@concealed] On Behalf Of Nadilson Santana
Sent: Thursday, 22 November 2012 2:38 a.m.
To: address@concealed
Subject: [sympa-users] Problem wich LDAP

 

Hello,

 

I'm having trouble configuring LDAP in sympa. Auth.conf configured in the file with the following configuration:

 

ldap

        host                            intranet.ufba.br:389

        timeout                         30

        suffix                          dc=intranet,dc=ufba,dc=br

        get_dn_by_uid_filter            (uid=[sender])

        get_dn_by_email_filter          (mail=[sender])

        email_attribute                 mail

        scope                           sub

        use_ssl                         1

 

but, does not work. Could someone help me

 

 

--
Nadilson S. Santana
Desenvolvedor de Soluções




--
Nadilson S. Santana
Desenvolvedor de Soluções

Archive powered by MHonArc 2.6.19+.

Top of Page