Hi,
I think the problem is also in your distinguished_name_template value.
For my case, OU=unit1,DC=mydc,DC=com, I made it work with either of
templates:
*{}@mydc.com*
or
*mydc\{}*
regards
On Tuesday, December 18, 2012 6:22:20 PM UTC+7, Graziano Aliberti wrote:
>
> Hi,
>
> if I set login_attribute: sAMAccountName I got:
>
> Not there yet.
> For debugging purposes, this is the DN we tried:
> sAMAccountName=MYID,ou=MYOU,o=MYO,c=it
>
> I don't know how it's possible...
>
> Il giorno martedì 18 dicembre 2012 10:32:45 UTC+1, Phuong Doan ha scritto:
>>
>> how about setting login_attribute: sAMAccountName?
>>
>> And btw, I use tool LDAP Browser to test my LDAP parameters:
>> http://www.ldapadministrator.com/download.htm
>> Hope that it may help you something
>>
>> On Friday, December 14, 2012 4:53:36 PM UTC+7, Graziano Aliberti wrote:
>>>
>>> Hi,
>>> thank you for the post.
>>>
>>> Right now I do another little step over. Now I'm able to see "All good,
>>> your credentials are correct" but only if I do the login with the default
>>> CN attribute (that is not my case). If I try to set login_attribute: uid
>>> and insert my userId (that I use in many other applications) I return back
>>> to "Not there yet".
>>>
>>> How is this possibile?
>>>
>>> Il giorno venerdì 14 dicembre 2012 09:41:32 UTC+1, Phuong Doan ha
>>> scritto:
>>>>
>>>> I was in the same trouble, and finally I made it for my case, I put my
>>>> note at:
>>>> http://programerblog.com/2012/12/gitorious-ldap-authentication-configuration/
>>>> Hop that it's useful to you
>>>>
>>>> On Tuesday, December 11, 2012 10:21:10 PM UTC+7, Graziano Aliberti
>>>> wrote:
>>>>>
>>>>> Hi guys,
>>>>>
>>>>> I don't know how the ldap authentication works for you but I really
>>>>> don't know how I must configure it.
>>>>>
>>>>> Regards
>>>>>
>>>>> Il giorno martedì 4 dicembre 2012 11:33:32 UTC+1, Graziano Aliberti ha
>>>>> scritto:
>>>>>>
>>>>>> Any news for me?
>>>>>>
>>>>>> Thank you very much
>>>>>>
>>>>>> Il giorno giovedì 29 novembre 2012 11:15:20 UTC+1, Graziano Aliberti
>>>>>> ha scritto:
>>>>>>>
>>>>>>> Hi,
>>>>>>>
>>>>>>> it doesn't work!! I've done all that you tell me to do.
>>>>>>>
>>>>>>> Regards
>>>>>>>
>>>>>>> Il giorno mercoledì 28 novembre 2012 17:41:05 UTC+1, Federico Don ha
>>>>>>> scritto:
>>>>>>>>
>>>>>>>> First backup to code.
>>>>>>>> as root:
>>>>>>>> cd /home
>>>>>>>> cp -r ./git ./git.org
>>>>>>>>
>>>>>>>>
>>>>>>>> update the existing code.
>>>>>>>>
>>>>>>>> cd /home/git/gitorious
>>>>>>>> git add .
>>>>>>>> git commit
>>>>>>>> (post a comment, save and exit)
>>>>>>>> git pull
>>>>>>>>
>>>>>>>> (Pulling resolve merge error with
>>>>>>>> http://genomewiki.ucsc.edu/index.php/Resolving_merge_conflicts_in_Git
>>>>>>>> )
>>>>>>>>
>>>>>>>> download:
>>>>>>>>
>>>>>>>> wget --no-check-certificate "
>>>>>>>> https://gitorious.org/gitorious/mainline/blobs/raw/d85ec6785415775cfa51660af180dae42ec91b2d/lib/gitorious/authentication/ldap_authentication.rb
>>>>>>>> "
>>>>>>>> cp ldap_authentication.rb
>>>>>>>> /home/git/gitorious/lib/gitorious/authentication/ldap_authentication.rb
>>>>>>>>
>>>>>>>> Edit:
>>>>>>>>
>>>>>>>> vi
>>>>>>>> /home/git/gitorious/lib/gitorious/authentication/ldap_authentication.rb
>>>>>>>>
>>>>>>>> go to line 74 (def authenticate(username, password))
>>>>>>>> Change and add with this:
>>>>>>>>
>>>>>>>> def authenticate(credentials)
>>>>>>>> username = credentials.username
>>>>>>>> password = credentials.password
>>>>>>>>
>>>>>>>> save and exit
>>>>>>>>
>>>>>>>> repair permission:
>>>>>>>>
>>>>>>>> chown -R git:git /home/git/gitorious
>>>>>>>>
>>>>>>>> service httpd restart
>>>>>>>>
>>>>>>>> I hope your comment and Luck!
>>>>>>>>
>>>>>>>>
>>>>>>>> 2012/11/28 Graziano Aliberti <[email protected]>
>>>>>>>>
>>>>>>>>> Humm,
>>>>>>>>>
>>>>>>>>> I have the master of the mainline...what can I do? git pull origin
>>>>>>>>> master? Do you think this can help me?
>>>>>>>>>
>>>>>>>>> Il giorno mercoledì 28 novembre 2012 16:33:40 UTC+1, Federico Don
>>>>>>>>> ha scritto:
>>>>>>>>>>
>>>>>>>>>> do you have the ultimate version for gitorious?
>>>>>>>>>>
>>>>>>>>>> I had this problem and when i update to version the problem was
>>>>>>>>>> solved!
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2012/11/28 Graziano Aliberti <[email protected]>
>>>>>>>>>>
>>>>>>>>>>> Hi,
>>>>>>>>>>>
>>>>>>>>>>> my issue is that I've never seen "All good, your credential are
>>>>>>>>>>> correct"
>>>>>>>>>>>
>>>>>>>>>>> Always
>>>>>>>>>>>
>>>>>>>>>>> Not there yet.
>>>>>>>>>>> For debugging purposes, this is the DN we tried:
>>>>>>>>>>> uid=MyUser,OU=Something,O=**Something,C=it
>>>>>>>>>>>
>>>>>>>>>>> The user, obviously, exists
>>>>>>>>>>>
>>>>>>>>>>> Thank you,
>>>>>>>>>>>
>>>>>>>>>>> Graziano
>>>>>>>>>>>
>>>>>>>>>>> Il giorno mercoledì 28 novembre 2012 15:41:38 UTC+1, Federico
>>>>>>>>>>> Don ha scritto:
>>>>>>>>>>>>
>>>>>>>>>>>> Hello,
>>>>>>>>>>>>
>>>>>>>>>>>> if you run the script for test....
>>>>>>>>>>>>
>>>>>>>>>>>> [root@gitorious gitorious]# bundle exec
>>>>>>>>>>>> script/test_ldap_connection USER PASSWORD
>>>>>>>>>>>> All good, your credentials are correct
>>>>>>>>>>>>
>>>>>>>>>>>> what is your issue??
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2012/11/28 Graziano Aliberti <[email protected]>
>>>>>>>>>>>>
>>>>>>>>>>>>> Hi Federico,
>>>>>>>>>>>>>
>>>>>>>>>>>>> I've tried with your configuration (changing the server and
>>>>>>>>>>>>> the base_dn) but it doesn't work!
>>>>>>>>>>>>>
>>>>>>>>>>>>> This is my configuration:
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> production:
>>>>>>>>>>>>> disable_default: true
>>>>>>>>>>>>> methods:
>>>>>>>>>>>>> - adapter: Gitorious::Authentication::**LDA**
>>>>>>>>>>>>> PAuthentication
>>>>>>>>>>>>> host: ldap.something.it
>>>>>>>>>>>>> port: 389
>>>>>>>>>>>>> base_dn: OU=Something,O=Something,C=it
>>>>>>>>>>>>> attribute_mapping:
>>>>>>>>>>>>> mail: email
>>>>>>>>>>>>> login_attribute: uid
>>>>>>>>>>>>> encryption: none
>>>>>>>>>>>>>
>>>>>>>>>>>>> Il giorno venerdì 23 novembre 2012 20:30:59 UTC+1, Federico
>>>>>>>>>>>>> Don ha scritto:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> could you try with this setup?
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> production:
>>>>>>>>>>>>>> disable_default: false
>>>>>>>>>>>>>> methods:
>>>>>>>>>>>>>> - adapter: Gitorious::Authentication::**LDA****
>>>>>>>>>>>>>> PAuthentication
>>>>>>>>>>>>>> host: 172.17.195.115
>>>>>>>>>>>>>> port: 389
>>>>>>>>>>>>>> base_dn: DC=example,DC=com
>>>>>>>>>>>>>> bind_username: user_ldap_bind
>>>>>>>>>>>>>> bind_password: password_user_ldap_bind
>>>>>>>>>>>>>> user_filter:
>>>>>>>>>>>>>> username_attribute: sAMAccountName
>>>>>>>>>>>>>> encryption: none
>>>>>>>>>>>>>> login_attribute: uid
>>>>>>>>>>>>>> distinguished_name_template:
>>>>>>>>>>>>>> "uid={},OU=users,DC=example,**DC****=com"
>>>>>>>>>>>>>> attribute_mapping:
>>>>>>>>>>>>>> mail: email
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> I hope your comment!
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Regards,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2012/11/23 Graziano Aliberti <[email protected]>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> How can I do that? I want just that only the authentication
>>>>>>>>>>>>>>> is handle by LDAP.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Il giorno venerdì 23 novembre 2012 15:13:42 UTC+1, anapsix
>>>>>>>>>>>>>>> ha scritto:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> I'm using Kerberos auth with our LDAP setup (openldap) and
>>>>>>>>>>>>>>>> its working great.. though you do need to edit the auth module
>>>>>>>>>>>>>>>> code to
>>>>>>>>>>>>>>>> allow for SSO.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> To post to this group, send email to
>>>>>>>>>>>>>>> [email protected]
>>>>>>>>>>>>>>> To unsubscribe from this group, send email to
>>>>>>>>>>>>>>> gitorious+...@**googlegroups.com
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>> To post to this group, send email to [email protected]
>>>>>>>>>>>>> To unsubscribe from this group, send email to
>>>>>>>>>>>>> gitorious+...@**googlegroups.com
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>> To post to this group, send email to [email protected]
>>>>>>>>>>> To unsubscribe from this group, send email to
>>>>>>>>>>> gitorious+...@**googlegroups.com
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>> To post to this group, send email to [email protected]
>>>>>>>>> To unsubscribe from this group, send email to
>>>>>>>>> [email protected]
>>>>>>>>>
>>>>>>>>
>>>>>>>>
--
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
