Hello Jess Johnson,
We have used samba4 as an active directory. We have tried to integrate with
openxpki. All configuration is done. But when we tried to login with an
active directory users got an error 'Login with the given credentials
failed!'. Please help/guide me.
Error is given below :
2021/10/09 16:50:48 INFO Got invalid auth result from handler LDAPlogin
[pid=2460|sid=30vf]
2021/10/09 16:50:48 WARN Login failed (user: john, error:
I18N_OPENXPKI_UI_LOGIN_FAILED) [pid=2460|sid=30vf]
2021/10/09 16:50:48 ERROR I18N_OPENXPKI_UI_AUTHENTICATION_FAILED
[pid=2460|sid=30vf
connector.yaml Configuration is given below.
userLDAP:
class: Connector::Builtin::Authentication::LDAP
LOCATION: ldap://192.168.10.164
base: dc=example,dc=com
binddn: CN=Administrator,CN=Users,DC=example,DC=com
password: ********
filter: "(&(sAMAccountName=[% LOGIN %])(memberOf=CN=Users,CN=Domain
Users,DC=example,DC=com))"
Thank you,
Sanju Kundu
On Wed, Sep 15, 2021 at 6:45 PM Sanju Kundu <[email protected]> wrote:
> Hello,
> Thank you for your email to help us proper configuration of ldap
> authentication with openxpki. We will configure as per our organization.
>
> Thanks a lot.
>
> Thanking you,
> Sanju Kundu
>
> On Tue, Sep 14, 2021 at 5:45 AM Jess Johnson <[email protected]> wrote:
>
>> I got it working with 389-ds
>>
>> prereq:
>> BIND user and password
>> pkiadmin group
>> pkiuser group
>>
>>
>> Here are the lines I added to the files in the auth subdirectory in the
>> realm I use
>>
>> handler.yaml
>> LDAPlogin:
>> type: Connector
>> label: LDAP Login for Users
>> description: LDAP login for users
>> role: User
>> source@: connector:auth.connector.userLDAP
>>
>> raopLDAPlogin:
>> type: Connector
>> label: LDAP Login for Users
>> description: LDAP login for users
>> role: RA Operator
>> source@: connector:auth.connector.raopLDAP
>>
>>
>> stack.yaml
>> UserLDAP:
>> label: LDAP user Logins
>> handler: LDAPlogin
>> type: passwd
>>
>> OperatorLDAP:
>> label: LDAP Operator Logins
>> handler: raopLDAPlogin
>> type: passwd
>>
>>
>> connector.yaml
>> userLDAP:
>> class: Connector::Builtin::Authentication::LDAP
>> LOCATION: ldap://<servername>
>> base: dc=x,dc=y
>> binddn: <BINDDN>
>> password: <BINDPASSWD>
>> filter: "(&(uid=[% LOGIN %])(memberOf=cn=pkiuser,<redacted>))"
>>
>> raopLDAP:
>> class: Connector::Builtin::Authentication::LDAP
>> LOCATION: ldap://<servername>
>> base: dc=x,dc=y
>> binddn: <BINDDN>
>> password: <BINDPASSWD>
>> filter: "(&(uid=[% LOGIN %])(memberOf=cn=pkiadmin,<redacted>))"
>>
>> On Sat, Sep 11, 2021 at 1:32 AM Martin Bartosch via OpenXPKI-users <
>> [email protected]> wrote:
>>
>>>
>>> > We have used Openxpki version 3.12 in our environment. Our requirement
>>> is that we want to authenticate openxpki with external ldap login from
>>> openxpki UI. Please help us, how can we integrate external ldap users with
>>> openxpki, so that we can login from openxpki web UI using external ldap
>>> users. We don't want anonymous user login from openxpki web UI.
>>> >
>>>
>>> Please read the documentation and search the mailing list archive. This
>>> question has been covered there only recently.
>>>
>>> Martin
>>>
>>>
>>>
>>> _______________________________________________
>>> OpenXPKI-users mailing list
>>> [email protected]
>>> https://lists.sourceforge.net/lists/listinfo/openxpki-users
>>>
>> _______________________________________________
>> OpenXPKI-users mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/openxpki-users
>>
>
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
