Re: [icinga-users] LDAP authentication from icinga-web

Thu, 10 Mar 2011 12:23:14 -0800 

Khoury,
Did you manage to get this working satisfactorily?  I'm looking for some advice 
on the correct configuration.

Per the discussion in this thread I've uncommented the relevant lines in 
auth.xml and put it what I think the right info:

<ae:parameter 
name="ldap_dsn">ldap://fx-win2k8-dc-01.industrialdefender.com</ae:parameter>
                        <ae:parameter 
name="ldap_basedn">DC=industrialdefender,DC=com</ae:parameter>
                        <ae:parameter 
name="ldap_binddn">CN=icingaadsearch,CN=Users,DC=industrialdefender,DC=com</ae:parameter>
                        <ae:parameter 
name="ldap_bindpw"><![CDATA[XXXXXX]]></ae:parameter>
                        <ae:parameter 
name="ldap_userattr">sAMAccountName</ae:parameter>
                        <ae:parameter 
name="ldap_filter_user"><![CDATA[(&(sAMAccountName=__USERNAME__))]]></ae:parameter>
</ae:parameter>




But keep receiving this output when attempting to login:

[Thu Mar 10 19:58:46 2011] [debug] Auth.Dispatch: Starting authenticate 
(username=rday)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Dispatch: Userdata found in db (uid=3)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider: Object (name=internal) 
initialized
[Thu Mar 10 19:58:46 2011] [debug] Auth.Dispatch: Authoritative provider found 
(provider=internal, authid=rday)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.Database: 
HASH(66e0a3ec330bda16ab0041b30b73eed93c730fc23361b250b26103d0dd2b4c69)
[Thu Mar 10 19:58:46 2011] [info] Auth.Dispatch: Delegate authentication 
(not_authoritative=internal,user=rday)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider: Object (name=auth_key) 
initialized
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider: Object (name=msad-ldap1) 
initialized
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.LDAP Try LDAP connect 
(dsn=ldap://fx-win2k8-dc-01.industrialdefender.com,bind=true)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.LDAP got resource Resource id 
#931
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.LDAP Successfully bind 
(dn=CN=icingaadsearch,CN=Users,DC=industrialdefender,DC=com)
[Thu Mar 10 19:58:46 2011] [info] Auth.Provider.LDAP connection successfully 
(ldap://fx-win2k8-dc-01.industrialdefender.com)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.LDAP Prepare LDAPsearch 
(base=rday, filter=(objectClass=*))
[Thu Mar 10 19:58:46 2011] [fatal] Uncaught AppKitPHPError: PHP Error 
ldap_search(): Search: Invalid DN syntax 
(/usr/local/icinga-web/app/modules/AppKit/models/Auth/Provider/LDAPModel.class.php:87)
 
(/usr/local/icinga-web/app/modules/AppKit/lib/logging/AppKitExceptionHandler.class.php:20)
[Thu Mar 10 19:58:46 2011] [debug] Auth.Provider.LDAP Error: Invalid DN syntax 
(errno=34,resource=931)

Thanks,
Roderick Day

------------------------------------------------------------------------------
Colocation vs. Managed Hosting
A question and answer guide to determining the best fit
for your organization - today and in the future.
http://p.sf.net/sfu/internap-sfd2d
_______________________________________________
icinga-users mailing list
icinga-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/icinga-users

Reply via email to