[SOGo] LDAP authentication using Active Directory

Fri, 27 May 2011 06:07:27 -0700 

Hi,

 

I am experiencing problems with LDAP authentication using Active
Directory.

For example, login in webmail. I can log in with operator (same user
that bindDN)  but I cant login with others users in AD.

I am using SOGo 1.3.3 with cyrus, postfix and mysql on Ubuntu.

 

Here is my .GNUstepDefaults

        <key>SOGoUserSources</key>

        <array>

            <dict>

                <key>CNFieldName</key>

                <string>cn</string>

                <key>IDFieldName</key>

                <string>cn</string>

                <key>UIDFieldName</key>

                <string>sAMAccountName</string>

                <key>baseDN</key>

                <string>dc=domain,dc=es</string>

                <key>bindDN</key>

                <string>cn=operator,cn=users,dc=domain,dc=es</string>

                <key>bindFields</key>

                <string>sAMAccountName</string>

                <key>bindPassword</key>

                <string>PASSWORD</string>

                <key>canAuthenticate</key>

                <string>YES</string>

                <key>displayName</key>

                <string>Lista global de direcciones</string>

                <key>filter</key>

                <string>objectClass=user</string>

                <key>hostname</key>

                <string>IP.IP.IP.IP</string>

                <key>id</key>

                <string>public</string>

                <key>isAddressBook</key>

                <string>YES</string>

                <key>passwordPolicy</key>

                <string>NO</string>

                <key>port</key>

                <string>389</string>

                <key>scope</key>

                <string>SUB</string>

                <key>type</key>

                <string>ldap</string>

            </dict>

        </array>

 

And the out of the login action in sogo.log when I try to log
(successful & not)

Login of user  successful, called operator:

 

2011-05-27 12:49:41.432 sogod[24672] WARNING(-[NSNull(misc) count]):
called NSNull -count (returns 0) !!!

localhost - - [27/May/2011:12:49:41 GMT] "GET /SOGo/so/ HTTP/1.1" 200
3490/0 0.014 10437 66% 0

May 27 12:50:04 sogod [24672]: SOGoRootPage successful login for user
'operator' - expire = -1  grace = -1

localhost - - [27/May/2011:12:50:04 GMT] "POST /SOGo/connect HTTP/1.1"
200 27/49 0.016 - - 0

localhost - - [27/May/2011:12:50:04 GMT] "GET /SOGo/so/operador
HTTP/1.1" 302 0/0 0.002 - - 0

localhost - - [27/May/2011:12:50:04 GMT] "GET /SOGo/so/operador/view
HTTP/1.1" 302 0/0 0.003 - - 0

localhost - - [27/May/2011:12:50:04 GMT] "GET /SOGo/so/operador/Mail
HTTP/1.1" 302 0/0 0.002 - - 0

 

Login of user unsuccessful:

 

2011-05-27 12:51:51.305 sogod[24672] WARNING(-[NSNull(misc) count]):
called NSNull -count (returns 0) !!!

localhost - - [27/May/2011:12:51:51 GMT] "GET /SOGo/so/ HTTP/1.1" 200
3490/0 0.014 10437 66% 0

May 27 12:52:33 sogod [24672]: SOGoRootPage Login for user 'fandersen'
might not have worked - password policy: 65535  grace: -1  expire: -1
bound: 0

localhost - - [27/May/2011:12:52:33 GMT] "POST /SOGo/connect HTTP/1.1"
403 34/45 0.006 - - 276K

 

Any idea?

 

Thanks in advance.

 

Flemming Andersen.

 

-- 
[email protected]
https://inverse.ca/sogo/lists

Reply via email to