You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@qpid.apache.org by Brandon Pedersen <bp...@gmail.com> on 2011/11/10 06:38:25 UTC
sasl authentication problems with c++ broker
I am running the C++ 0.12 broker. I have setup authentication but it
isn't working correctly. In my qpidd.conf file I have:
auth=yes
realm=QPID
sasl-config=/etc/qpid/sasl
In the /etc/qpid/sasl directory I have a qpidd.conf file with:
pwcheck_method: auxprop
auxprop_plugin: sasldb
sasldb_path: /etc/qpid/qpidd.sasldb
I list the users and see:
# sasldblistusers2 -f /etc/qpid/qpidd.sasldb
admin@QPID: userPassword
I also made sure I set the password correctly by doing:
saslpasswd2 -cf /etc/qpid/qpidd.sasldb -u QPID admin
However, when I start the broker and just run qpid-config -a
admin/admin@localhost exchanges the following shows in the log:
info SASL: Mechanism list: DIGEST-MD5 PLAIN NTLM LOGIN ANONYMOUS CRAM-MD5
Nov 10 05:25:17 p2459055 qpidd[5851]: debug SASL: Starting
authentication with mechanism: PLAIN
Nov 10 05:25:17 p2459055 qpidd[5851]: info SASL: Authentication failed
for admin@QPID:SASL(-13): user not found: Password verification failed
Nov 10 05:25:17 p2459055 qpidd[5851]: debug Exception constructed:
Authentication failed
Am I missing something?
Thanks,
-Brandon
---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project: http://qpid.apache.org
Use/Interact: mailto:users-subscribe@qpid.apache.org
Re: sasl authentication problems with c++ broker
Posted by Brandon Pedersen <bp...@gmail.com>.
On Thu, Nov 10, 2011 at 2:48 AM, Gordon Sim <gs...@redhat.com> wrote:
> Are you running qpidd as root? Does it have read access to
> /etc/qpid/qpidd.sasldb?
Was running as an unprivileged user, changed the permissions on the
sasl db and it worked, thanks!
---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project: http://qpid.apache.org
Use/Interact: mailto:users-subscribe@qpid.apache.org
Re: sasl authentication problems with c++ broker
Posted by Gordon Sim <gs...@redhat.com>.
On 11/10/2011 05:38 AM, Brandon Pedersen wrote:
> I am running the C++ 0.12 broker. I have setup authentication but it
> isn't working correctly. In my qpidd.conf file I have:
> auth=yes
> realm=QPID
> sasl-config=/etc/qpid/sasl
>
> In the /etc/qpid/sasl directory I have a qpidd.conf file with:
> pwcheck_method: auxprop
> auxprop_plugin: sasldb
> sasldb_path: /etc/qpid/qpidd.sasldb
>
> I list the users and see:
> # sasldblistusers2 -f /etc/qpid/qpidd.sasldb
> admin@QPID: userPassword
>
> I also made sure I set the password correctly by doing:
> saslpasswd2 -cf /etc/qpid/qpidd.sasldb -u QPID admin
>
> However, when I start the broker and just run qpid-config -a
> admin/admin@localhost exchanges the following shows in the log:
> info SASL: Mechanism list: DIGEST-MD5 PLAIN NTLM LOGIN ANONYMOUS CRAM-MD5
> Nov 10 05:25:17 p2459055 qpidd[5851]: debug SASL: Starting
> authentication with mechanism: PLAIN
> Nov 10 05:25:17 p2459055 qpidd[5851]: info SASL: Authentication failed
> for admin@QPID:SASL(-13): user not found: Password verification failed
> Nov 10 05:25:17 p2459055 qpidd[5851]: debug Exception constructed:
> Authentication failed
>
> Am I missing something?
Are you running qpidd as root? Does it have read access to
/etc/qpid/qpidd.sasldb?
Try limiting the mechanisms through a mech_list entry in
/etc/qpid/sasl/qpidd.conf just to verify that that config file is indeed
being used.
---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project: http://qpid.apache.org
Use/Interact: mailto:users-subscribe@qpid.apache.org