what is your config? are you using SIMPLEBIND or SEARCHANDBIND? On Tue, Mar 24, 2015 at 8:16 AM, FJ <findingj...@gmail.com> wrote:
> I run the into the same issue as this hijenix <hije...@hotmail.com>. > Just can't figure it out. ldapsearch search result is fine but it alway > said " > Invalid password" when trying to login with an AD account. Had no issue > on this on OM211 but OM304 does different. > > Please advise if you have any suggestion. > > On Fri, Feb 6, 2015 at 5:30 AM, Maxim Solodovnik <solomax...@gmail.com> > wrote: > >> there were at least several successful configs reported to the mailing >> lists >> you can try to find them using search here: >> http://openmeetings.markmail.org/ >> >> On Fri, Feb 6, 2015 at 6:33 PM, kaushal jani <hije...@hotmail.com> wrote: >> >>> its ok thanks for the help, if possible please provide me tested demo >>> config file. >>> >>> i thinks its bug in openmeetings 3.3? >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 19:27:35 +0700 >>> Subject: RE: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> I'm out of ideas :( >>> >>> WBR, Maxim >>> (from mobile, sorry for the typos) >>> On Feb 6, 2015 6:26 PM, "kaushal jani" <hije...@hotmail.com> wrote: >>> >>> still get none user found in ldap with below settings >>> >>> ldap_search_query=(sAMAccountName=%1$s) >>> >>> ------------------------------ >>> From: hije...@hotmail.com >>> To: user@openmeetings.apache.org >>> Subject: RE: None user found in LDAP >>> Date: Fri, 6 Feb 2015 17:28:32 +0530 >>> >>> its working fine with below result >>> >>> # search result >>> search: 2 >>> result: 0 Success >>> >>> # numResponses: 2 >>> # numEntries: 1 >>> >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 18:51:46 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> then try >>> >>> ldapsearch -x -D "cn=test,cn=users,dc=demo,dc=dom" -w test123 -p 389 -h >>> x.x.x.x -b "cn=users,dc=demo,dc=dom" -s sub "(sAMAccountName= >>> *name_you_enter_in_login_here*)" >>> >>> On Fri, Feb 6, 2015 at 5:47 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> try with suggested but found none user in ldap again >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 18:40:38 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> great :) >>> >>> now try to set it like this: >>> ldap_search_query=(sAMAccountName=%1$s) >>> >>> On Fri, Feb 6, 2015 at 5:38 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> as per ur suggesstion, when i change query parameter as per ldapsearch, >>> got below error >>> >>> my new ldap_search_query=(objectClass=*) >>> >>> >>> DEBUG 02-06 17:05:02.006 o.a.o.l.LdapLoginManagement:165 >>> [http-nio-0.0.0.0-5080-exec-8] - LdapLoginmanagement.doLdapLogin >>> ERROR 02-06 17:05:02.083 o.a.o.l.LdapLoginManagement:255 >>> [http-nio-0.0.0.0-5080-exec-8] - *more than 1 user found in LDAP* >>> INFO 02-06 17:05:02.084 o.a.d.l.c.a.LdapNetworkConnection:1870 >>> [NioProcessor-146] - There is no future associated with the messageId 2, >>> ignoring the message >>> DEBUG 02-06 17:05:02.085 o.a.w.u.c.CookieUtils:266 >>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn >>> and request URI=signin?3-1.IBehaviorListener.1-signin >>> DEBUG 02-06 17:05:02.090 o.a.w.f.FeedbackMessages:69 >>> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage >>> message = "Unknown error. Please report this to the administrator.", >>> reporter = signin, level = ERROR]' >>> DEBUG 02-06 17:05:02.091 o.a.w.u.c.CookieUtils:266 >>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn >>> and request URI=signin?3-1.IBehaviorListener.1-signin >>> DEBUG 02-06 17:05:02.093 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>> DEBUG 02-06 17:05:02.094 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>> DEBUG 02-06 17:05:02.094 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>> DEBUG 02-06 17:05:02.105 >>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>> [sessionId=61BAF900150CB93ECCCEBC5A922E4A4B, pageId=3]... >>> DEBUG 02-06 17:05:02.105 o.a.w.p.DiskDataStore:186 >>> [Wicket-PageSavingThread] - Storing data for page with id '3' in session >>> with id '61BAF900150CB93ECCCEBC5A922E4A4B' >>> >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 18:35:07 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> additionally ldapsearch uses IP address while OM config has name >>> >>> On Fri, Feb 6, 2015 at 5:31 PM, Maxim Solodovnik <solomax...@gmail.com> >>> wrote: >>> >>> As I can see >>> ldap_search_query=(&(objectCategory=person)(objectClass=person)( >>> sAMAccountName=%1$s)) >>> differs from ldapsearch parameters >>> >>> On Fri, Feb 6, 2015 at 5:28 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> ldap_server_type=AD >>> ldap_conn_host=test.demo.dom >>> ldap_conn_port=389 >>> ldap_conn_secure=false >>> >>> ldap_admin_dn=cn=test,cn=users,dc=demo,dc=dom >>> >>> ldap_passwd=***** >>> >>> ldap_search_base=cn=users,dc=demo,dc=dom >>> >>> >>> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s)) >>> >>> ldap_search_scope= SUBTREE >>> >>> ldap_auth_type=SEARCHANDBIND >>> >>> ldap_userdn_format=sAMAccountName=%s,cn=users,dc=demo,dc=dom >>> ldap_provisionning=NONE >>> ldap_use_admin_to_get_attrs=true >>> ldap_sync_password_to_om=false >>> ldap_user_attr_firstname=givenName >>> ldap_user_attr_mail=mail >>> ldap_user_attr_street=streetAddress >>> ldap_user_attr_additionalname=description >>> ldap_user_attr_fax=facsimileTelephoneNumber >>> ldap_user_attr_zip=postalCode >>> ldap_user_attr_country=co >>> ldap_user_attr_town=l >>> ldap_user_attr_phone=telephoneNumber >>> ldap_use_lower_case=false >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 18:21:02 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> and your final OM config? >>> >>> On Fri, Feb 6, 2015 at 5:20 PM, Maxim Solodovnik <solomax...@gmail.com> >>> wrote: >>> >>> ant your final OM config? >>> >>> On Fri, Feb 6, 2015 at 5:18 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> ldapsearch -x -D "cn=test,cn=users,dc=demo,dc=dom" -w test123 -p 389 -h >>> x.x.x.x -b "cn=users,dc=demo,dc=dom" -s sub "(objectclass=*)" >>> >>> with below result >>> >>> # search result >>> search: 2 >>> result: 0 Success >>> >>> # numResponses: 62 >>> # numEntries: 61 >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 18:06:07 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> show me your ldapsearch command >>> >>> On Fri, Feb 6, 2015 at 5:03 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> please help me i am stuck at this stage from last 3 days.... >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 17:57:02 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> I have no time for it, sorry >>> Maybe someone else can help >>> >>> On Fri, Feb 6, 2015 at 4:53 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> if possible can you take teamviwer for it? >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 17:49:57 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> if ldapsearch works and OM is not, then there are some differences. >>> >>> I can't tell you what is wrong with your config since I don't have >>> access to your LDAP server >>> >>> On Fri, Feb 6, 2015 at 4:46 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> please also tell me my config file is ok? >>> >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 17:44:29 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> then it should work with OM as well >>> >>> On Fri, Feb 6, 2015 at 4:42 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> ldapsearch working fine with exact copy of config file >>> >>> ------------------------------ >>> From: hije...@hotmail.com >>> To: user@openmeetings.apache.org >>> Subject: RE: None user found in LDAP >>> Date: Fri, 6 Feb 2015 16:11:00 +0530 >>> >>> >>> hi, >>> >>> i tried with exact copy from config its working fine >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 17:11:23 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> please try to use "ldapsearch" with the exact values from your config >>> is it working? >>> >>> On Fri, Feb 6, 2015 at 4:04 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> i tried lower case but same result >>> >>> none user found in ldap >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 16:59:08 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> I see couple of issues here >>> 1) in you config LDAP DN is UPPER CASE, in your command line test it is >>> mixed case >>> 2) in your config search_base is CN=Users,DC=DEMO,DC=DOM, in command >>> line it is: dc=DEMO,dc=DOM >>> >>> On Fri, Feb 6, 2015 at 3:55 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> yes its working fine..... >>> >>> when i try ldapserach with below command then its working fine >>> >>> ldapsearch -x -D "cn=test,cn=Users,dc=demo,dc=dom" -w demo123 -p 389 -h >>> test.demo.dom -b "dc=DEMO,dc=DOM" -s sub "(objectclass=*)" >>> >>> ------------------------------ >>> Date: Fri, 6 Feb 2015 16:50:55 +0700 >>> Subject: Re: None user found in LDAP >>> From: solomax...@gmail.com >>> To: user@openmeetings.apache.org >>> >>> Have you tried to use LDAPExplorer and check >>> 1) admin creadentials >>> 2) search >>> >>> On Fri, Feb 6, 2015 at 3:47 PM, kaushal jani <hije...@hotmail.com> >>> wrote: >>> >>> please help me regarding my configuration for LDAP. >>> >>> my config file is as below >>> >>> ldap_server_type=AD >>> ldap_conn_host=test.demo.dom >>> ldap_conn_port=389 >>> ldap_conn_secure=false >>> >>> ldap_admin_dn=CN=test,CN=Users,DC=DEMO,DC=DOM >>> >>> ldap_passwd=***** >>> >>> ldap_search_base=CN=Users,DC=DEMO,DC=DOM >>> >>> >>> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s)) >>> >>> ldap_search_scope= SUBTREE >>> >>> ldap_auth_type=SEARCHANDBIND >>> >>> ldap_userdn_format=sAMAccountName=%s,CN=Users,DC=DEMO,DC=DOM >>> ldap_provisionning=NONE >>> ldap_use_admin_to_get_attrs=true >>> ldap_sync_password_to_om=false >>> ldap_user_attr_firstname=givenName >>> ldap_user_attr_mail=mail >>> ldap_user_attr_street=streetAddress >>> ldap_user_attr_additionalname=description >>> ldap_user_attr_fax=facsimileTelephoneNumber >>> ldap_user_attr_zip=postalCode >>> ldap_user_attr_country=co >>> ldap_user_attr_town=l >>> ldap_user_attr_phone=telephoneNumber >>> ldap_use_lower_case=false >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >>> >> >> >> -- >> WBR >> Maxim aka solomax >> > > > > -- > jt > ________________________________ > John Tran > Northern California, CA > findingj...@gmail.com > ICQ IM: 27741710 > AOL IM: find1ngj0hn > Yahoo! IM: findingj0hn > MSN IM: findingj...@hotmail.com > -- WBR Maxim aka solomax
