You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@openmeetings.apache.org by Philippe Dhont <Dh...@vlaamsoogpunt.be> on 2015/04/28 13:45:41 UTC
LDAP not working anymore after upgrade to version 3.0.4
Hi,
I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows accounts (Active Directory) via LDAP doesn't work anymore.
Configuration in OpenMeetings:
LDAP config:
Name: vloog
Enabled > checked
Config file name: om_ldap.cfg
Add domain to user name > checked
Domain: bll.local
PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM version:
ldap_server_type=AD
ldap_conn_url=ldap://192.168.x.x:389
ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
ldap_passwd=xxxxxxxx
ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
field_user_principal=userPrincipalName
ldap_auth_type=SIMPLE
ldap_sync_password_to_om=no
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
I copied the working config to the new but that doesn't work anymore in the new version apparently, so the new config:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
ldap_search_scope=SUBTREE
ldap_auth_type=SIMPLEBIND
ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOUPDATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_sync_password_to_om=false
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
When I try to login now, I get "Wrong password" but I don't think that has anything to do with it.
In openmeetings log, I don't find anything about the user I tried to login with or maybe the loglevel is not high enough ? Can I change that ?
Anybody an idea ?
Thanks,
Ph.
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
Re: LDAP not working anymore after upgrade to version 3.0.4
Posted by Maxim Solodovnik <so...@gmail.com>.
Additionally you haven't specified auth_type, in this case SIMPLEBIND will
be used
I would recommend to use SEARCHANDBIND (works better for me)
To enable extensive LDAP related logs you need to edit
file webapps/openmeetings/WEB-INF/classes/logback-config.xml
change the line
<logger name="org.apache.directory" level="INFO" />
to be
<logger name="org.apache.directory" level="DEBUG" />
and restart red5
On Wed, Apr 29, 2015 at 9:22 AM, Maxim Solodovnik <so...@gmail.com>
wrote:
> just have checked your config one more time
>
> please disregard my previous comment, your ldap_search_base looks good
> (was wrongly displayed on my mobile phone)
> but you don't have
>
> ldap_search_query=(uid=%s)
>
> parameter.
> I guess for AD it should be something like:
> ldap_search_query=(sAMAccountName=%s)
>
> not sure :( and have no AD to test
>
>
> On Tue, Apr 28, 2015 at 7:58 PM, Philippe Dhont <
> Dhont.Philippe@vlaamsoogpunt.be> wrote:
>
>> That doesn’t change anything.
>>
>> What logs do I need to check ?
>>
>>
>>
>> Vriendelijke groeten,
>>
>>
>>
>>
>> *Philippe Dhont *
>> *ICT-Dienst Netwerk Vlaamse Oogpunten *Oudenburgweg 40
>> 8490 VARSENARE
>>
>> *T: *050/40 60 18
>> *M: *0479/65 93 40
>> *W: *www.vlaamsoogpunt.be
>> *E:* Dhont.Philippe@vlaamsoogpunt.be
>>
>>
>>
>> *From:* Maxim Solodovnik [mailto:solomax666@gmail.com]
>> *Sent:* dinsdag 28 april 2015 15:17
>> *To:* Openmeetings user-list
>> *Subject:* RE: LDAP not working anymore after upgrade to version 3.0.4
>>
>>
>>
>> Ldap_search_base should be "OU=%s"
>> You need to examine logs for error details (additional Ldap logging might
>> need to be enabled)
>>
>> WBR, Maxim
>> (from mobile, sorry for the typos)
>>
>> On Apr 28, 2015 6:29 PM, "Philippe Dhont" <
>> Dhont.Philippe@vlaamsoogpunt.be> wrote:
>>
>> According to your post, I changed the config to:
>>
>> ldap_conn_host=192.168.x.x
>> ldap_conn_port=389
>> ldap_conn_secure=false
>> ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
>> ldap_passwd=xxxxxxxxxxxx
>> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
>> ldap_provisionning=AUTOCREATE
>> ldap_deref_mode=always
>> ldap_use_admin_to_get_attrs=true
>>
>> ldap_user_attr_lastname=sn
>> ldap_user_attr_firstname=givenName
>> ldap_user_attr_mail=mail
>> ldap_user_attr_street=streetAddress
>> ldap_user_attr_additionalname=description
>> ldap_user_attr_fax=facsimileTelephoneNumber
>> ldap_user_attr_zip=postalCode
>> ldap_user_attr_country=co
>> ldap_user_attr_town=l
>> ldap_user_attr_phone=telephoneNumber
>>
>> ldap_use_lower_case=false
>>
>>
>> .but the result is the same, it doesn't work.
>> How can I get more info about the specific error/problem ?
>> There is no "ldap_server_type=AD" line anymore, is that correct ?
>> Thanks, Ph.
>>
>>
>>
>>
>> From: Maxim Solodovnik [mailto:solomax666@gmail.com]
>> Sent: dinsdag 28 april 2015 13:59
>> To: Openmeetings user-list
>> Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
>>
>> yes the format of the config has been changed
>> please check the example here:
>> https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
>>
>> On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <
>> Dhont.Philippe@vlaamsoogpunt.be <Dh...@vlaamsoogpunt.be>> wrote:
>> Hi,
>>
>> I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows
>> accounts (Active Directory) via LDAP doesn't work anymore.
>> Configuration in OpenMeetings:
>>
>> LDAP config:
>> Name: vloog
>> Enabled > checked
>>
>> Config file name: om_ldap.cfg
>>
>> Add domain to user name > checked
>> Domain: bll.local
>>
>> PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM
>> version:
>> ldap_server_type=AD
>> ldap_conn_url=ldap://192.168.x.x:389
>> ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
>> ldap_passwd=xxxxxxxx
>> ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
>> field_user_principal=userPrincipalName
>> ldap_auth_type=SIMPLE
>> ldap_sync_password_to_om=no
>>
>> ldap_user_attr_lastname=sn
>> ldap_user_attr_firstname=givenName
>> ldap_user_attr_mail=mail
>> ldap_user_attr_street=streetAddress
>> ldap_user_attr_additionalname=description
>> ldap_user_attr_fax=facsimileTelephoneNumber
>> ldap_user_attr_zip=postalCode
>> ldap_user_attr_country=co
>> ldap_user_attr_town=l
>> ldap_user_attr_phone=telephoneNumber
>>
>> ldap_use_lower_case=false
>>
>>
>>
>> I copied the working config to the new but that doesn't work anymore in
>> the new version apparently, so the new config:
>> ldap_conn_host=192.168.x.x
>> ldap_conn_port=389
>> ldap_conn_secure=false
>> ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
>> ldap_passwd=xxxxxxxxx
>> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
>>
>> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
>> ldap_search_scope=SUBTREE
>> ldap_auth_type=SIMPLEBIND
>> ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
>> ldap_provisionning=AUTOUPDATE
>> ldap_deref_mode=always
>> ldap_use_admin_to_get_attrs=true
>> ldap_sync_password_to_om=false
>>
>> ldap_user_attr_lastname=sn
>> ldap_user_attr_firstname=givenName
>> ldap_user_attr_mail=mail
>> ldap_user_attr_street=streetAddress
>> ldap_user_attr_additionalname=description
>> ldap_user_attr_fax=facsimileTelephoneNumber
>> ldap_user_attr_zip=postalCode
>> ldap_user_attr_country=co
>> ldap_user_attr_town=l
>> ldap_user_attr_phone=telephoneNumber
>>
>> ldap_use_lower_case=false
>>
>>
>>
>> When I try to login now, I get "Wrong password" but I don't think that
>> has anything to do with it.
>> In openmeetings log, I don't find anything about the user I tried to
>> login with or maybe the loglevel is not high enough ? Can I change that ?
>>
>> Anybody an idea ?
>>
>> Thanks,
>> Ph.
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
>> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg"
>> alt="Schenk Online" name="schenk Online" width="170" height="125"
>> border="0" id="Schenk Online"/></a>
>>
>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>>
>> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
>> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg"
>> alt="Schenk Online" name="schenk Online" width="170" height="125"
>> border="0" id="Schenk Online"/></a>
>>
>> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
--
WBR
Maxim aka solomax
RE: LDAP not working anymore after upgrade to version 3.0.4
Posted by Philippe Dhont <Dh...@vlaamsoogpunt.be>.
Hi,
That didn't worked either but the following works :)
ldap_search_query=(userPrincipalName=%s)
So my working config now (with Windows AD):
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN=openmeetingsLDAP,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_search_query=(userPrincipalName=%s)
ldap_search_scope=SUBTREE
ldap_auth_type=SEARCHANDBIND
ldap_provisionning=AUTOCREATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_sync_password_to_om=true
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
Maybe it can help others too...
Thanks.
Ph.
From: Maxim Solodovnik [mailto:solomax666@gmail.com]
Sent: woensdag 29 april 2015 5:23
To: Openmeetings user-list
Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
just have checked your config one more time
please disregard my previous comment, your ldap_search_base looks good (was wrongly displayed on my mobile phone)
but you don't have
ldap_search_query=(uid=%s)
parameter.
I guess for AD it should be something like:
ldap_search_query=(sAMAccountName=%s)
not sure :( and have no AD to test
On Tue, Apr 28, 2015 at 7:58 PM, Philippe Dhont <Dh...@vlaamsoogpunt.be> wrote:
That doesn’t change anything.
What logs do I need to check ?
Vriendelijke groeten,
Philippe Dhont
ICT-Dienst Netwerk Vlaamse Oogpunten
Oudenburgweg 40
8490 VARSENARE
T: 050/40 60 18
M: 0479/65 93 40
W: www.vlaamsoogpunt.be
E: Dhont.Philippe@vlaamsoogpunt.be
From: Maxim Solodovnik [mailto:solomax666@gmail.com]
Sent: dinsdag 28 april 2015 15:17
To: Openmeetings user-list
Subject: RE: LDAP not working anymore after upgrade to version 3.0.4
Ldap_search_base should be "OU=%s"
You need to examine logs for error details (additional Ldap logging might need to be enabled)
WBR, Maxim
(from mobile, sorry for the typos)
On Apr 28, 2015 6:29 PM, "Philippe Dhont" <Dh...@vlaamsoogpunt.be> wrote:
According to your post, I changed the config to:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOCREATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
but the result is the same, it doesn't work.
How can I get more info about the specific error/problem ?
There is no "ldap_server_type=AD" line anymore, is that correct ?
Thanks, Ph.
From: Maxim Solodovnik [mailto:solomax666@gmail.com]
Sent: dinsdag 28 april 2015 13:59
To: Openmeetings user-list
Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
yes the format of the config has been changed
please check the example here: https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <Dh...@vlaamsoogpunt.be> wrote:
Hi,
I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows accounts (Active Directory) via LDAP doesn't work anymore.
Configuration in OpenMeetings:
LDAP config:
Name: vloog
Enabled > checked
Config file name: om_ldap.cfg
Add domain to user name > checked
Domain: bll.local
PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM version:
ldap_server_type=AD
ldap_conn_url=ldap://192.168.x.x:389
ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
ldap_passwd=xxxxxxxx
ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
field_user_principal=userPrincipalName
ldap_auth_type=SIMPLE
ldap_sync_password_to_om=no
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
I copied the working config to the new but that doesn't work anymore in the new version apparently, so the new config:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
ldap_search_scope=SUBTREE
ldap_auth_type=SIMPLEBIND
ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOUPDATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_sync_password_to_om=false
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
When I try to login now, I get "Wrong password" but I don't think that has anything to do with it.
In openmeetings log, I don't find anything about the user I tried to login with or maybe the loglevel is not high enough ? Can I change that ?
Anybody an idea ?
Thanks,
Ph.
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
--
WBR
Maxim aka solomax
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
--
WBR
Maxim aka solomax
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
Re: LDAP not working anymore after upgrade to version 3.0.4
Posted by Maxim Solodovnik <so...@gmail.com>.
just have checked your config one more time
please disregard my previous comment, your ldap_search_base looks good (was
wrongly displayed on my mobile phone)
but you don't have
ldap_search_query=(uid=%s)
parameter.
I guess for AD it should be something like:
ldap_search_query=(sAMAccountName=%s)
not sure :( and have no AD to test
On Tue, Apr 28, 2015 at 7:58 PM, Philippe Dhont <
Dhont.Philippe@vlaamsoogpunt.be> wrote:
> That doesn’t change anything.
>
> What logs do I need to check ?
>
>
>
> Vriendelijke groeten,
>
>
>
>
> *Philippe Dhont *
> *ICT-Dienst Netwerk Vlaamse Oogpunten *Oudenburgweg 40
> 8490 VARSENARE
>
> *T: *050/40 60 18
> *M: *0479/65 93 40
> *W: *www.vlaamsoogpunt.be
> *E:* Dhont.Philippe@vlaamsoogpunt.be
>
>
>
> *From:* Maxim Solodovnik [mailto:solomax666@gmail.com]
> *Sent:* dinsdag 28 april 2015 15:17
> *To:* Openmeetings user-list
> *Subject:* RE: LDAP not working anymore after upgrade to version 3.0.4
>
>
>
> Ldap_search_base should be "OU=%s"
> You need to examine logs for error details (additional Ldap logging might
> need to be enabled)
>
> WBR, Maxim
> (from mobile, sorry for the typos)
>
> On Apr 28, 2015 6:29 PM, "Philippe Dhont" <Dh...@vlaamsoogpunt.be>
> wrote:
>
> According to your post, I changed the config to:
>
> ldap_conn_host=192.168.x.x
> ldap_conn_port=389
> ldap_conn_secure=false
> ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
> ldap_passwd=xxxxxxxxxxxx
> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
> ldap_provisionning=AUTOCREATE
> ldap_deref_mode=always
> ldap_use_admin_to_get_attrs=true
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
> .but the result is the same, it doesn't work.
> How can I get more info about the specific error/problem ?
> There is no "ldap_server_type=AD" line anymore, is that correct ?
> Thanks, Ph.
>
>
>
>
> From: Maxim Solodovnik [mailto:solomax666@gmail.com]
> Sent: dinsdag 28 april 2015 13:59
> To: Openmeetings user-list
> Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
>
> yes the format of the config has been changed
> please check the example here:
> https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
>
> On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <
> Dhont.Philippe@vlaamsoogpunt.be <Dh...@vlaamsoogpunt.be>> wrote:
> Hi,
>
> I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows
> accounts (Active Directory) via LDAP doesn't work anymore.
> Configuration in OpenMeetings:
>
> LDAP config:
> Name: vloog
> Enabled > checked
>
> Config file name: om_ldap.cfg
>
> Add domain to user name > checked
> Domain: bll.local
>
> PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM
> version:
> ldap_server_type=AD
> ldap_conn_url=ldap://192.168.x.x:389
> ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
> ldap_passwd=xxxxxxxx
> ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
> field_user_principal=userPrincipalName
> ldap_auth_type=SIMPLE
> ldap_sync_password_to_om=no
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> I copied the working config to the new but that doesn't work anymore in
> the new version apparently, so the new config:
> ldap_conn_host=192.168.x.x
> ldap_conn_port=389
> ldap_conn_secure=false
> ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
> ldap_passwd=xxxxxxxxx
> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
>
> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
> ldap_search_scope=SUBTREE
> ldap_auth_type=SIMPLEBIND
> ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
> ldap_provisionning=AUTOUPDATE
> ldap_deref_mode=always
> ldap_use_admin_to_get_attrs=true
> ldap_sync_password_to_om=false
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> When I try to login now, I get "Wrong password" but I don't think that has
> anything to do with it.
> In openmeetings log, I don't find anything about the user I tried to login
> with or maybe the loglevel is not high enough ? Can I change that ?
>
> Anybody an idea ?
>
> Thanks,
> Ph.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk
> Online" name="schenk Online" width="170" height="125" border="0" id="Schenk
> Online"/></a>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk
> Online" name="schenk Online" width="170" height="125" border="0" id="Schenk
> Online"/></a>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
>
>
--
WBR
Maxim aka solomax
RE: LDAP not working anymore after upgrade to version 3.0.4
Posted by Philippe Dhont <Dh...@vlaamsoogpunt.be>.
That doesn’t change anything.
What logs do I need to check ?
Vriendelijke groeten,
Philippe Dhont
ICT-Dienst Netwerk Vlaamse Oogpunten
Oudenburgweg 40
8490 VARSENARE
T: 050/40 60 18
M: 0479/65 93 40
W: www.vlaamsoogpunt.be
E: Dhont.Philippe@vlaamsoogpunt.be<ma...@vlaamsoogpunt.be>
From: Maxim Solodovnik [mailto:solomax666@gmail.com]
Sent: dinsdag 28 april 2015 15:17
To: Openmeetings user-list
Subject: RE: LDAP not working anymore after upgrade to version 3.0.4
Ldap_search_base should be "OU=%s"
You need to examine logs for error details (additional Ldap logging might need to be enabled)
WBR, Maxim
(from mobile, sorry for the typos)
On Apr 28, 2015 6:29 PM, "Philippe Dhont" <Dh...@vlaamsoogpunt.be>> wrote:
According to your post, I changed the config to:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOCREATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
.but the result is the same, it doesn't work.
How can I get more info about the specific error/problem ?
There is no "ldap_server_type=AD" line anymore, is that correct ?
Thanks, Ph.
From: Maxim Solodovnik [mailto:solomax666@gmail.com<ma...@gmailcom>]
Sent: dinsdag 28 april 2015 13:59
To: Openmeetings user-list
Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
yes the format of the config has been changed
please check the example here: https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <Dh...@vlaamsoogpunt.be>> wrote:
Hi,
I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows accounts (Active Directory) via LDAP doesn't work anymore.
Configuration in OpenMeetings:
LDAP config:
Name: vloog
Enabled > checked
Config file name: om_ldap.cfg
Add domain to user name > checked
Domain: bll.local
PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM version:
ldap_server_type=AD
ldap_conn_url=ldap://192.168.x.x:389
ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
ldap_passwd=xxxxxxxx
ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
field_user_principal=userPrincipalName
ldap_auth_type=SIMPLE
ldap_sync_password_to_om=no
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
I copied the working config to the new but that doesn't work anymore in the new version apparently, so the new config:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
ldap_search_scope=SUBTREE
ldap_auth_type=SIMPLEBIND
ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOUPDATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_sync_password_to_om=false
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
When I try to login now, I get "Wrong password" but I don't think that has anything to do with it.
In openmeetings log, I don't find anything about the user I tried to login with or maybe the loglevel is not high enough ? Can I change that ?
Anybody an idea ?
Thanks,
Ph.
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
--
WBR
Maxim aka solomax
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
RE: LDAP not working anymore after upgrade to version 3.0.4
Posted by Maxim Solodovnik <so...@gmail.com>.
Ldap_search_base should be "OU=%s"
You need to examine logs for error details (additional Ldap logging might
need to be enabled)
WBR, Maxim
(from mobile, sorry for the typos)
On Apr 28, 2015 6:29 PM, "Philippe Dhont" <Dh...@vlaamsoogpunt.be>
wrote:
> According to your post, I changed the config to:
>
> ldap_conn_host=192.168.x.x
> ldap_conn_port=389
> ldap_conn_secure=false
> ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
> ldap_passwd=xxxxxxxxxxxx
> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
> ldap_provisionning=AUTOCREATE
> ldap_deref_mode=always
> ldap_use_admin_to_get_attrs=true
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
> ...but the result is the same, it doesn't work.
> How can I get more info about the specific error/problem ?
> There is no "ldap_server_type=AD" line anymore, is that correct ?
> Thanks, Ph.
>
>
>
>
> From: Maxim Solodovnik [mailto:solomax666@gmail.com]
> Sent: dinsdag 28 april 2015 13:59
> To: Openmeetings user-list
> Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
>
> yes the format of the config has been changed
> please check the example here:
> https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
>
> On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <
> Dhont.Philippe@vlaamsoogpunt.be> wrote:
> Hi,
>
> I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows
> accounts (Active Directory) via LDAP doesn't work anymore.
> Configuration in OpenMeetings:
>
> LDAP config:
> Name: vloog
> Enabled > checked
>
> Config file name: om_ldap.cfg
>
> Add domain to user name > checked
> Domain: bll.local
>
> PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM
> version:
> ldap_server_type=AD
> ldap_conn_url=ldap://192.168.x.x:389
> ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
> ldap_passwd=xxxxxxxx
> ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
> field_user_principal=userPrincipalName
> ldap_auth_type=SIMPLE
> ldap_sync_password_to_om=no
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> I copied the working config to the new but that doesn't work anymore in
> the new version apparently, so the new config:
> ldap_conn_host=192.168.x.x
> ldap_conn_port=389
> ldap_conn_secure=false
> ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
> ldap_passwd=xxxxxxxxx
> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
>
> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
> ldap_search_scope=SUBTREE
> ldap_auth_type=SIMPLEBIND
> ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
> ldap_provisionning=AUTOUPDATE
> ldap_deref_mode=always
> ldap_use_admin_to_get_attrs=true
> ldap_sync_password_to_om=false
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> When I try to login now, I get "Wrong password" but I don't think that has
> anything to do with it.
> In openmeetings log, I don't find anything about the user I tried to login
> with or maybe the loglevel is not high enough ? Can I change that ?
>
> Anybody an idea ?
>
> Thanks,
> Ph.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk
> Online" name="schenk Online" width="170" height="125" border="0" id="Schenk
> Online"/></a>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk
> Online" name="schenk Online" width="170" height="125" border="0" id="Schenk
> Online"/></a>
>
RE: LDAP not working anymore after upgrade to version 3.0.4
Posted by Philippe Dhont <Dh...@vlaamsoogpunt.be>.
According to your post, I changed the config to:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN=ldapbind,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOCREATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
...but the result is the same, it doesn't work.
How can I get more info about the specific error/problem ?
There is no "ldap_server_type=AD" line anymore, is that correct ?
Thanks, Ph.
From: Maxim Solodovnik [mailto:solomax666@gmail.com]
Sent: dinsdag 28 april 2015 13:59
To: Openmeetings user-list
Subject: Re: LDAP not working anymore after upgrade to version 3.0.4
yes the format of the config has been changed
please check the example here: https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <Dh...@vlaamsoogpunt.be> wrote:
Hi,
I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows accounts (Active Directory) via LDAP doesn't work anymore.
Configuration in OpenMeetings:
LDAP config:
Name: vloog
Enabled > checked
Config file name: om_ldap.cfg
Add domain to user name > checked
Domain: bll.local
PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM version:
ldap_server_type=AD
ldap_conn_url=ldap://192.168.x.x:389
ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
ldap_passwd=xxxxxxxx
ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
field_user_principal=userPrincipalName
ldap_auth_type=SIMPLE
ldap_sync_password_to_om=no
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
I copied the working config to the new but that doesn't work anymore in the new version apparently, so the new config:
ldap_conn_host=192.168.x.x
ldap_conn_port=389
ldap_conn_secure=false
ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
ldap_passwd=xxxxxxxxx
ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
ldap_search_scope=SUBTREE
ldap_auth_type=SIMPLEBIND
ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
ldap_provisionning=AUTOUPDATE
ldap_deref_mode=always
ldap_use_admin_to_get_attrs=true
ldap_sync_password_to_om=false
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
ldap_use_lower_case=false
When I try to login now, I get "Wrong password" but I don't think that has anything to do with it.
In openmeetings log, I don't find anything about the user I tried to login with or maybe the loglevel is not high enough ? Can I change that ?
Anybody an idea ?
Thanks,
Ph.
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
--
WBR
Maxim aka solomax
<a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk Online" name="schenk Online" width="170" height="125" border="0" id="Schenk Online"/></a>
Re: LDAP not working anymore after upgrade to version 3.0.4
Posted by Maxim Solodovnik <so...@gmail.com>.
yes the format of the config has been changed
please check the example here:
https://svn.apache.org/repos/asf/openmeetings/branches/3.0.x/src/main/webapp/conf/om_ldap.cfg
On Tue, Apr 28, 2015 at 5:45 PM, Philippe Dhont <
Dhont.Philippe@vlaamsoogpunt.be> wrote:
> Hi,
>
> I upgraded to version 3.0.4 (from 3.0.1) and now login with our windows
> accounts (Active Directory) via LDAP doesn't work anymore.
> Configuration in OpenMeetings:
>
> LDAP config:
> Name: vloog
> Enabled > checked
>
> Config file name: om_ldap.cfg
>
> Add domain to user name > checked
> Domain: bll.local
>
> PREVIOUS OM_LDAP.CFG configuration when it worked with the previous OM
> version:
> ldap_server_type=AD
> ldap_conn_url=ldap://192.168.x.x:389
> ldap_admin_dn=CN:openmeetingsLDAPuser,CN:Users,DC:BLL,DC:local
> ldap_passwd=xxxxxxxx
> ldap_search_base=OU:Vlaamseoogpunten,DC:BLL,DC:local
> field_user_principal=userPrincipalName
> ldap_auth_type=SIMPLE
> ldap_sync_password_to_om=no
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> I copied the working config to the new but that doesn't work anymore in
> the new version apparently, so the new config:
> ldap_conn_host=192.168.x.x
> ldap_conn_port=389
> ldap_conn_secure=false
> ldap_admin_dn=CN= openmeetingsLDAPuser,CN=Users,DC=BLL,DC=local
> ldap_passwd=xxxxxxxxx
> ldap_search_base=OU=Vlaamseoogpunten,DC=BLL,DC=local
>
> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
> ldap_search_scope=SUBTREE
> ldap_auth_type=SIMPLEBIND
> ldap_userdn_format=sAMAccountName=%s,OU=Vlaamseoogpunten,DC=BLL,DC=local
> ldap_provisionning=AUTOUPDATE
> ldap_deref_mode=always
> ldap_use_admin_to_get_attrs=true
> ldap_sync_password_to_om=false
>
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> ldap_use_lower_case=false
>
>
>
> When I try to login now, I get "Wrong password" but I don't think that has
> anything to do with it.
> In openmeetings log, I don't find anything about the user I tried to login
> with or maybe the loglevel is not high enough ? Can I change that ?
>
> Anybody an idea ?
>
> Thanks,
> Ph.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> <a href="http://www.blindenzorglichtenliefde.be/nl/Schenken"><img
> src="http://images.lichtenliefde.be/mailfooters/schenken.jpg" alt="Schenk
> Online" name="schenk Online" width="170" height="125" border="0" id="Schenk
> Online"/></a>
>
--
WBR
Maxim aka solomax