Re: [SOGo] sogo not binding to LDAP
On Wednesday 07 Mar 2012 13:55:24 Bunjes Friedemann wrote: > sogo seems not to be able to bind to our LDAP server: > [...] > sogo.log: > > Mar 06 09:58:47 sogod [4778]: SOGoRootPage Login for user 'fbunjes' might > not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 > localhost - - [06/Mar/2012:09:58:47 GMT] "POST /SOGo/connect HTTP/1.1" 403 > 34/42 0.025 - - 2M > > Commandline ldapsearch using user sogo is working: > > ldapsearch -h localhost -b "ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" > -D > "uid=sogo,ou=Users,ou=EDV,ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" > -W objectclass=person > > How can we further debug this? Any way to make the log more verbose? I found the best way to debug these sorts of issues is to set the LDAP server to log the queries, so you can see exactly what the difference is between successful and unsuccessful transactions. If, like me, you are using OpenLDAP, I find that running with olcLogLevel: stats usually gives me sufficient clues. -- Jim Hague - jim.ha...@acm.org Never trust a computer you can't lift. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] sogo not binding to LDAP
Hi Bunjes, your baseDN in your GNUstepDefaults looks different than from your ldapsearch string. GNUstepDefaults: dc=neurologie.uni-tuebingen.de,dc=local ldapsearch string: ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local Maybe there lays the problem? Please run some more manuel ldap searches, using different baseDNs with the goal to output every (or a group of) authorized sogo users - and just those. Bye Am 07.03.2012 14:55, schrieb Bunjes Friedemann: > Hi, > > sogo seems not to be able to bind to our LDAP server: > > .GNUstepDefaults: > > SOGoUserSources > > > CNFieldName > cn > IDFieldName > uid > UIDFieldName > uid > baseDN > dc=neurologie.uni-tuebingen.de,dc=local > bindDN > > uid=sogo,ou=Users,ou=EDV,ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local > bindPassword > *** > canAuthenticate > YES > displayName > Addresses > hostname > localhost > id > public > isAddressBook > YES > port > 389 > scope > SUB > > sogo.log: > > Mar 06 09:58:47 sogod [4778]: SOGoRootPage Login for user 'fbunjes' might not > have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 > localhost - - [06/Mar/2012:09:58:47 GMT] "POST /SOGo/connect HTTP/1.1" 403 > 34/42 0.025 - - 2M > > Commandline ldapsearch using user sogo is working: > > ldapsearch -h localhost -b "ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" > -D "uid=sogo,ou=Users,ou=EDV,ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" > -W objectclass=person > > How can we further debug this? Any way to make the log more verbose? > > Best, > > Friedemann > -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] sogo not binding to LDAP
Hi, sogo seems not to be able to bind to our LDAP server: .GNUstepDefaults: SOGoUserSources CNFieldName cn IDFieldName uid UIDFieldName uid baseDN dc=neurologie.uni-tuebingen.de,dc=local bindDN uid=sogo,ou=Users,ou=EDV,ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local bindPassword *** canAuthenticate YES displayName Addresses hostname localhost id public isAddressBook YES port 389 scope SUB sogo.log: Mar 06 09:58:47 sogod [4778]: SOGoRootPage Login for user 'fbunjes' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 localhost - - [06/Mar/2012:09:58:47 GMT] "POST /SOGo/connect HTTP/1.1" 403 34/42 0.025 - - 2M Commandline ldapsearch using user sogo is working: ldapsearch -h localhost -b "ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" -D "uid=sogo,ou=Users,ou=EDV,ou=HIH,dc=neurologie.uni-tuebingen.de,dc=local" -W objectclass=person How can we further debug this? Any way to make the log more verbose? Best, Friedemann -- Dr. rer. nat. Friedemann Bunjes Hertie-Institut für Klinische Hirnforschung Zentrum für Neurologie Universitätsklinikum Tübingen Otfried-Müller-Str. 27 72076 Tübingen +49-7071-29-81999 -- users@sogo.nu https://inverse.ca/sogo/lists