how about setting login_attribute: sAMAccountName? And btw, I use tool LDAP Browser to test my LDAP parameters: http://www.ldapadministrator.com/download.htm Hope that it may help you something
On Friday, December 14, 2012 4:53:36 PM UTC+7, Graziano Aliberti wrote: > > Hi, > thank you for the post. > > Right now I do another little step over. Now I'm able to see "All good, > your credentials are correct" but only if I do the login with the default > CN attribute (that is not my case). If I try to set login_attribute: uid > and insert my userId (that I use in many other applications) I return back > to "Not there yet". > > How is this possibile? > > Il giorno venerdì 14 dicembre 2012 09:41:32 UTC+1, Phuong Doan ha scritto: >> >> I was in the same trouble, and finally I made it for my case, I put my >> note at: >> http://programerblog.com/2012/12/gitorious-ldap-authentication-configuration/ >> Hop that it's useful to you >> >> On Tuesday, December 11, 2012 10:21:10 PM UTC+7, Graziano Aliberti wrote: >>> >>> Hi guys, >>> >>> I don't know how the ldap authentication works for you but I really >>> don't know how I must configure it. >>> >>> Regards >>> >>> Il giorno martedì 4 dicembre 2012 11:33:32 UTC+1, Graziano Aliberti ha >>> scritto: >>>> >>>> Any news for me? >>>> >>>> Thank you very much >>>> >>>> Il giorno giovedì 29 novembre 2012 11:15:20 UTC+1, Graziano Aliberti ha >>>> scritto: >>>>> >>>>> Hi, >>>>> >>>>> it doesn't work!! I've done all that you tell me to do. >>>>> >>>>> Regards >>>>> >>>>> Il giorno mercoledì 28 novembre 2012 17:41:05 UTC+1, Federico Don ha >>>>> scritto: >>>>>> >>>>>> First backup to code. >>>>>> as root: >>>>>> cd /home >>>>>> cp -r ./git ./git.org >>>>>> >>>>>> >>>>>> update the existing code. >>>>>> >>>>>> cd /home/git/gitorious >>>>>> git add . >>>>>> git commit >>>>>> (post a comment, save and exit) >>>>>> git pull >>>>>> >>>>>> (Pulling resolve merge error with >>>>>> http://genomewiki.ucsc.edu/index.php/Resolving_merge_conflicts_in_Git >>>>>> ) >>>>>> >>>>>> download: >>>>>> >>>>>> wget --no-check-certificate " >>>>>> https://gitorious.org/gitorious/mainline/blobs/raw/d85ec6785415775cfa51660af180dae42ec91b2d/lib/gitorious/authentication/ldap_authentication.rb >>>>>> " >>>>>> cp ldap_authentication.rb >>>>>> /home/git/gitorious/lib/gitorious/authentication/ldap_authentication.rb >>>>>> >>>>>> Edit: >>>>>> >>>>>> vi >>>>>> /home/git/gitorious/lib/gitorious/authentication/ldap_authentication.rb >>>>>> >>>>>> go to line 74 (def authenticate(username, password)) >>>>>> Change and add with this: >>>>>> >>>>>> def authenticate(credentials) >>>>>> username = credentials.username >>>>>> password = credentials.password >>>>>> >>>>>> save and exit >>>>>> >>>>>> repair permission: >>>>>> >>>>>> chown -R git:git /home/git/gitorious >>>>>> >>>>>> service httpd restart >>>>>> >>>>>> I hope your comment and Luck! >>>>>> >>>>>> >>>>>> 2012/11/28 Graziano Aliberti <[email protected]> >>>>>> >>>>>>> Humm, >>>>>>> >>>>>>> I have the master of the mainline...what can I do? git pull origin >>>>>>> master? Do you think this can help me? >>>>>>> >>>>>>> Il giorno mercoledì 28 novembre 2012 16:33:40 UTC+1, Federico Don ha >>>>>>> scritto: >>>>>>>> >>>>>>>> do you have the ultimate version for gitorious? >>>>>>>> >>>>>>>> I had this problem and when i update to version the problem was >>>>>>>> solved! >>>>>>>> >>>>>>>> >>>>>>>> 2012/11/28 Graziano Aliberti <[email protected]> >>>>>>>> >>>>>>>>> Hi, >>>>>>>>> >>>>>>>>> my issue is that I've never seen "All good, your credential are >>>>>>>>> correct" >>>>>>>>> >>>>>>>>> Always >>>>>>>>> >>>>>>>>> Not there yet. >>>>>>>>> For debugging purposes, this is the DN we tried: >>>>>>>>> uid=MyUser,OU=Something,O=**Something,C=it >>>>>>>>> >>>>>>>>> The user, obviously, exists >>>>>>>>> >>>>>>>>> Thank you, >>>>>>>>> >>>>>>>>> Graziano >>>>>>>>> >>>>>>>>> Il giorno mercoledì 28 novembre 2012 15:41:38 UTC+1, Federico Don >>>>>>>>> ha scritto: >>>>>>>>>> >>>>>>>>>> Hello, >>>>>>>>>> >>>>>>>>>> if you run the script for test.... >>>>>>>>>> >>>>>>>>>> [root@gitorious gitorious]# bundle exec >>>>>>>>>> script/test_ldap_connection USER PASSWORD >>>>>>>>>> All good, your credentials are correct >>>>>>>>>> >>>>>>>>>> what is your issue?? >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> 2012/11/28 Graziano Aliberti <[email protected]> >>>>>>>>>> >>>>>>>>>>> Hi Federico, >>>>>>>>>>> >>>>>>>>>>> I've tried with your configuration (changing the server and the >>>>>>>>>>> base_dn) but it doesn't work! >>>>>>>>>>> >>>>>>>>>>> This is my configuration: >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> production: >>>>>>>>>>> disable_default: true >>>>>>>>>>> methods: >>>>>>>>>>> - adapter: Gitorious::Authentication::**LDA** >>>>>>>>>>> PAuthentication >>>>>>>>>>> host: ldap.something.it >>>>>>>>>>> port: 389 >>>>>>>>>>> base_dn: OU=Something,O=Something,C=it >>>>>>>>>>> attribute_mapping: >>>>>>>>>>> mail: email >>>>>>>>>>> login_attribute: uid >>>>>>>>>>> encryption: none >>>>>>>>>>> >>>>>>>>>>> Il giorno venerdì 23 novembre 2012 20:30:59 UTC+1, Federico Don >>>>>>>>>>> ha scritto: >>>>>>>>>>>> >>>>>>>>>>>> could you try with this setup? >>>>>>>>>>>> >>>>>>>>>>>> production: >>>>>>>>>>>> disable_default: false >>>>>>>>>>>> methods: >>>>>>>>>>>> - adapter: Gitorious::Authentication::**LDA**** >>>>>>>>>>>> PAuthentication >>>>>>>>>>>> host: 172.17.195.115 >>>>>>>>>>>> port: 389 >>>>>>>>>>>> base_dn: DC=example,DC=com >>>>>>>>>>>> bind_username: user_ldap_bind >>>>>>>>>>>> bind_password: password_user_ldap_bind >>>>>>>>>>>> user_filter: >>>>>>>>>>>> username_attribute: sAMAccountName >>>>>>>>>>>> encryption: none >>>>>>>>>>>> login_attribute: uid >>>>>>>>>>>> distinguished_name_template: "uid={},OU=users,DC=example, >>>>>>>>>>>> **DC****=com" >>>>>>>>>>>> attribute_mapping: >>>>>>>>>>>> mail: email >>>>>>>>>>>> >>>>>>>>>>>> I hope your comment! >>>>>>>>>>>> >>>>>>>>>>>> Regards, >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> 2012/11/23 Graziano Aliberti <[email protected]> >>>>>>>>>>>> >>>>>>>>>>>>> How can I do that? I want just that only the authentication is >>>>>>>>>>>>> handle by LDAP. >>>>>>>>>>>>> >>>>>>>>>>>>> Il giorno venerdì 23 novembre 2012 15:13:42 UTC+1, anapsix ha >>>>>>>>>>>>> scritto: >>>>>>>>>>>>>> >>>>>>>>>>>>>> I'm using Kerberos auth with our LDAP setup (openldap) and >>>>>>>>>>>>>> its working great.. though you do need to edit the auth module >>>>>>>>>>>>>> code to >>>>>>>>>>>>>> allow for SSO. >>>>>>>>>>>>> >>>>>>>>>>>>> -- >>>>>>>>>>>>> To post to this group, send email to [email protected] >>>>>>>>>>>>> To unsubscribe from this group, send email to >>>>>>>>>>>>> gitorious+...@**googlegroups.com >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> -- >>>>>>>>>>> To post to this group, send email to [email protected] >>>>>>>>>>> To unsubscribe from this group, send email to >>>>>>>>>>> gitorious+...@**googlegroups.com >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> -- >>>>>>>>> To post to this group, send email to [email protected] >>>>>>>>> To unsubscribe from this group, send email to >>>>>>>>> gitorious+...@**googlegroups.com >>>>>>>>> >>>>>>>> >>>>>>>> -- >>>>>>> To post to this group, send email to [email protected] >>>>>>> To unsubscribe from this group, send email to >>>>>>> [email protected] >>>>>>> >>>>>> >>>>>> -- To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected]
