LDAP / FreeIPA (openldap) - no entries

["Vogel, Sven" <Sv...@kupper-computer.com>]

Hi there,

we try to get cloudstack running with ldap.

LDAP Configuration
ldap.basedn      Sets the basedn for LDAP             DC=example,DC=local
ldap.bind.password       Specifies the password to use for binding to LDAP           password
ldap.bind.principal          Specifies the bind principal to use for bind to LDAP                uid=cloudstack,cn=users,cn=accounts,dc=example,dc=local

also we added the ldap configuration

Host Name         openldap.example.local               Port 389

After that we tried a ldap search to the accounts like

[root@cloudstack ~]#  ldapsearch -h openldap -b dc=,example,dc=local -x "(&(objectClass=inetOrgPerson)(uid=*))" "uid mail givenName sn cn useraccountcontrol" I get all users back

# demo, users, accounts, example.local
dn: uid=demo,cn=users,cn=accounts,dc=example,dc=local
uid: demo

# demo1, users, accounts, example.local
dn: uid=demo1,cn=users,cn=accounts,dc=example,dc=local
uid: demo1

# cloudstack, users, accounts, example.local
dn: uid=cloudstack,cn=users,cn=accounts,dc=example,dc=local
uid: cloudstack

I access log from ldap I get (3 entries looks good)

[08/Feb/2017:16:48:47.008572152 +0100] conn=5308 op=1 SRCH base="dc=example,dc=local" scope=2 filter="(&(objectClass=inetOrgPerson)(uid=*))" attrs=ALL
[08/Feb/2017:16:48:47.022713466 +0100] conn=5308 op=1 RESULT err=0 tag=101 nentries=3 etime=0

when I try to add a user from cloud "add LDAP account" we don't see nothing in cloudstack no user and in access.log I get

[08/Feb/2017:16:50:45.984583113 +0100] conn=5094 op=39 SRCH base="DC=example,DC=local" scope=2 filter="(&(objectClass=inetOrgPerson)(uid=*))" attrs="uid mail givenName sn cn useraccountcontrol"
[08/Feb/2017:16:50:45.984750054 +0100] conn=5094 op=39 RESULT err=0 tag=101 nentries=0 etime=0 notes=P pr_idx=0 pr_cookie=-1

No entries ... I don't know. Is there something buggy or wrong in handling?

Thanks for help

Sven

Sven Vogel