Hi Emmanuel,
below is the complete ldif and in bold the corresponding user whose
password (uid=msakho, password=meissa) is in clear:
version: 1
dn: dc=example,dc=com
objectclass: top
objectclass: domain
dc: example
dn: ou=Groups,dc=example,dc=com
objectClass: organizationalUnit
objectClass: top
ou: Groups
dn: ou=Users,dc=example,dc=com
objectClass: organizationalUnit
objectClass: top
ou: Users
dn: cn=Administrator,ou=Groups,dc=example,dc=com
objectClass: groupOfNames
objectClass: top
cn: Administrator
member: cn=John+sn=Doe+uid=jdoe,ou=Users,dc=example,dc=com
member: cn=Elvadas NONO,ou=Users,dc=example,dc=com
dn: cn=AMQGroup,ou=Groups,dc=example,dc=com
objectClass: groupOfNames
objectClass: top
cn: AMQGroup
member: cn=Elvadas Nono+sn=WOGUIA+uid=nelvadas,ou=Users,dc=example,dc=com
member: cn=John+sn=Doe+uid=jdoe,ou=Users,dc=example,dc=com
member: cn=Meissa+sn=Sakho+uid=msakho,ou=Users,dc=example,dc=com
dn: cn=John+sn=Doe+uid=jdoe,ou=Users,dc=example,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: inetOrgPerson
objectClass: top
cn: John
sn: Doe
title: cn=Administrator,ou=Groups,dc=example,dc=com
uid: jdoe
userPassword: redhat
dn: cn=Elvadas NONO+uid=enonowoguia,ou=Users,dc=example,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: inetOrgPerson
objectClass: top
cn: elvadas nono
sn: Woguia
title: cn=Administrator,ou=Groups,dc=example,dc=com
uid: enonowoguia
userpassword:: e1NTSEF9dlMzVU95V1Bnek9JMUhreG5IV290My9jS0NxZWlGNmlDSlh1SEE9P
Q==
*dn: cn=Meissa SAKHO+uid=msakho,ou=Users,dc=example,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: inetOrgPerson
objectClass: top
cn: meissa sakho
sn: sakho
title: cn=Administrator,ou=Groups,dc=example,dc=com
uid: msakho
userpassword: meissa
*
*
*
Thanks
Le ven. 12 nov. 2021 à 04:03, Emmanuel Lécharny <elecha...@gmail.com
<mailto:elecha...@gmail.com>> a écrit :
Hi,
can you provide the entry associated to this user (with password
redacted, of course)?
Thanks !
On 11/11/2021 18:53, Meissa Sakho wrote:
> Hello everyone,
> I'm trying to connect to my Ldap DS server from ActiveMq .
> The connection setting is configured via a login.config file like
below:
> activemq {
>
> org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule
> required
> debug=true
> initialContextFactory=com.sun.jndi.ldap.LdapCtxFactory
> connectionURL="ldap://localhost:10389"
> connectionUsername="uid=admin,ou=system"
> connectionPassword=secret
> connectionProtocol=s
> authentication=simple
> userBase="ou=Users,dc=example,dc=com"
> userSearchMatching="(uid={0})"
> userSearchSubtree=true
> roleBase="ou=Groups,dc=example,dc=com"
> roleName=cn
> roleSearchMatching="(member={0})"
> roleSearchSubtree=false
> reload=true
> ;
>
> };
> I've imported a sample ldiff file and double checked that every user
> connection is correct.
> When I try to get connected via the ActiveMq admin console, I'm
getting a
> login failed error message because of a password that does not match.
>
> 2021-11-11 18:38:29,436 DEBUG
>
[org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule]
LDAP
> returned a relative name: cn=Meissa SAKHO+uid=msakho,ou=Users
>
> 2021-11-11 18:38:29,436 DEBUG
>
[org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule]
Using
> DN [cn=Meissa SAKHO+uid=msakho,ou=Users,dc=example,dc=com] for
binding.
>
> 2021-11-11 18:38:29,436 DEBUG
> [org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule]
> Binding the user.
>
> 2021-11-11 18:38:29,438 DEBUG
> [org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule]
> Authentication failed for dn=cn=Meissa
> SAKHO+uid=msakho,ou=Users,dc=example,dc=com
>
> WARN | qtp2029780820-35 | Login failed due to: Password does not
match for
> user: msakh
> When I check the password test connection via the DS Studio, it
works fine.
> I don't know what's wrong and where.
> Any idea?
>
--
*Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE
T. +33 (0)4 89 97 36 50
P. +33 (0)6 08 33 32 61
emmanuel.lecha...@busit.com <mailto:emmanuel.lecha...@busit.com>
https://www.busit.com/ <https://www.busit.com/>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@directory.apache.org
<mailto:users-unsubscr...@directory.apache.org>
For additional commands, e-mail: users-h...@directory.apache.org
<mailto:users-h...@directory.apache.org>