Samba 4.0.0alpha10 упс... древненькая...
----- Исходное сообщение ----- > От: "Maxim Solodovnik" <solomax...@gmail.com> > Кому: "user-russian" <user-russian@openmeetings.apache.org> > Отправленные: Пятница, 24 Март 2017 г 17:44:57 > Тема: Re: LDAP-аутентификацию не работает > в качестве LDAP AD? какой версии? > > On Fri, Mar 24, 2017 at 9:30 PM, Evgeniy Korneechev < > ekorneec...@remotesystems.ru> wrote: > >> ldap_admin_dn=CN=admin,CN=Users,DC=company,DC=local >> ldap_passwd=pass >> ldap_search_base=DC=company,DC=local >> ldap_search_query=(sAMAccountName=%s) >> ldap_search_scope=SUBTREE >> ldap_auth_type=SEARCHANDBIND >> ldap_userdn_format=CN=%s,OU=Service,OU=Holding,DC=company,DC=local >> >> [ERROR] [NioProcessor-21] org.apache.directory.api.ldap. >> codec.actions.controls.InitControls - The length of controls must not be >> null >> ........... >> ERROR 03-24 17:22:34.184 LdapLoginManagement.java 1726702 214 >> org.apache.openmeetings.core.ldap.LdapLoginManagement >> [http-nio-0.0.0.0-5080-exec-3] - NONE users found in LDAP >> >> хотя судя по tcpdump все приходит с сервера ровно также... >> >> ----- Исходное сообщение ----- >> > От: "Maxim Solodovnik" <solomax...@gmail.com> >> > Кому: "user-russian" <user-russian@openmeetings.apache.org> >> > Отправленные: Пятница, 24 Март 2017 г 16:50:31 >> > Тема: Re: LDAP-аутентификацию не работает >> >> > проверил на OpenLDAP server'е моём SEARCHANDBIND работает >> > ща SIMPLEBIND попробую >> > >> > On Fri, Mar 24, 2017 at 5:01 PM, Maxim Solodovnik <solomax...@gmail.com> >> > wrote: >> > >> >> я попозже постараюсь посмотреть (но у меня AD нет) >> >> работать сейчас надо .... >> >> >> >> On Fri, Mar 24, 2017 at 4:54 PM, Evgeniy Korneechev < >> >> ekorneec...@remotesystems.ru> wrote: >> >> >> >>> полный лог: >> >>> >> >>> DEBUG 03-24 10:54:10.081 ProtocolCodecFilter.java 68765999 211 >> >>> org.apache.mina.filter.codec.ProtocolCodecFilter [NioProcessor-66] - >> >>> Processing a MESSAGE_RECEIVED for session 55 >> >>> DEBUG 03-24 10:54:10.090 LdapLoginManagement.java 68766008 232 >> >>> org.apache.openmeetings.core.ldap.LdapLoginManagement >> >>> [http-nio-0.0.0.0-5080-exec-4] - getByLogin:: authenticated ? true, >> login = >> >>> 'ekorneechev', domain = 1, user = null >> >>> DEBUG 03-24 10:54:10.105 ProtocolCodecFilter.java 68766023 211 >> >>> org.apache.mina.filter.codec.ProtocolCodecFilter [NioProcessor-66] - >> >>> Processing a MESSAGE_RECEIVED for session 55 >> >>> DEBUG 03-24 10:54:10.107 ProtocolCodecFilter.java 68766025 211 >> >>> org.apache.mina.filter.codec.ProtocolCodecFilter [NioProcessor-66] - >> >>> Processing a MESSAGE_RECEIVED for session 55 >> >>> DEBUG 03-24 10:54:10.110 ProtocolCodecFilter.java 68766028 211 >> >>> org.apache.mina.filter.codec.ProtocolCodecFilter [NioProcessor-66] - >> >>> Processing a MESSAGE_RECEIVED for session 55 >> >>> [ERROR] [NioProcessor-66] org.apache.directory.api.ldap. >> >>> codec.actions.controls.InitControls - The length of controls must not >> be >> >>> null >> >>> WARN 03-24 10:54:10.115 LdapNetworkConnection.java 68766033 1912 >> >>> org.apache.directory.ldap.client.api.LdapNetworkConnection >> >>> [NioProcessor-66] - org.apache.directory.api.ldap. >> >>> codec.api.ResponseCarryingException: The length of controls must not >> be >> >>> null (Hexdump: 20 00 20 00 20 00 20 00 20 00 20 00 20 00 20 00 20 00 >> 20 00 >> >>> 20 00 20 00 50 00 06 00 1A 00 08 00 01 00 43 00 74 00 78 00 43 00 66 >> 00 67 >> >>> 00 50 00 72 00 65 00 73 00 65 00 6E 00 74 00 35 35 31 65 30 62 62 30 >> 18 00 >> >>> 08 00 01 00 43 00 74 00 78 00 43 00 66 00 67 00 46 00 6C 00 61 00 67 >> 00 73 >> >>> 00 31 00 30 30 66 30 65 30 65 37 12 00 08 00 01 00 43 00 74 00 78 00 >> 53 00 >> >>> 68 00 61 00 64 00 6F 00 77 00 30 32 30 30 30 30 30 30 2A 00 02 00 01 >> 00 43 >> >>> 00 74 00 78 00 4D 00 69 00 6E 00 45 00 6E 00 63 00 72 00 79 00 70 00 >> 74 00 >> >>> 69 00 6F 00 6E 00 4C 00 65 00 76 00 65 00 6C 00 30 31 20 00 54 00 01 >> 00 43 >> >>> 00 74 00 78 00 57 00 6F 00 72 00 6B 00 44 00 69 00 72 00 65 00 63 00 >> 74 00 >> >>> 6F 00 72 00 79 00 34 33 33 61 35 63 35 30 37 32 36 66 36 37 37 32 36 >> 31 36 >> >>> 64 32 30 34 36 36 39 36 63 36 35 37 33 32 30 32 38 37 38 33 38 33 36 >> 32 39 >> >>> 35 63 34 62 36 35 37 39 34 33 36 66 36 63 36 63 36 35 36 33 37 34 36 >> 66 37 >> >>> 32 35 37 35 30 34 36 34 38 34 34 34 34 30 30 22 00 7C 00 01 00 43 00 >> 74 00 >> >>> 78 00 49 00 6E 00 69 00 74 00 69 00 61 00 6C 00 50 00 72 00 6F 00 67 >> 00 72 >> >>> 00 61 00 6D 00 34 33 33 61 35 63 35 30 37 32 36 66 36 37 37 32 36 31 >> 36 64 >> >>> 32 30 34 36 36 39 36 63 36 35 37 33 32 30 32 38 37 38 33 38 33 36 32 >> 39 35 >> >>> 63 34 62 36 35 37 39 34 33 36 66 36 63 36 63 36 35 36 33 37 34 36 66 >> 37 32 >> >>> 35 37 35 30 34 36 34 38 34 34 34 34 35 63 34 62 36 35 37 39 34 33 36 >> 66 36 >> >>> 63 36 63 36 35 36 33 37 34 36 66 37 32 35 37 35 30 34 36 32 65 36 35 >> 37 38 >> >>> 36 35 30 30 22 0A 41 00 00 00 00 00 00 00 00 00 00 00 70 B3 76 0A 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 28 FF 83 08 08 00 00 00 70 0C 15 E8 00 00 >> 00 00 >> >>> 78 B4 2E 0A 00 00 00 00 6B 65 79 63 6F 6C 6C 00 00 00 00 00 41 00 00 >> 00 70 >> >>> B3 76 0A A8 9B C8 0A 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 98 9B >> >>> C8 0A 0A 00 00 00 70 0C 15 E8 00 00 00 00 D0 98 C8 0A 00 00 00 00 67 >> 69 76 >> >>> 65 6E 4E 61 6D 65 00 79 08 41 00 00 00 68 9B C8 0A 28 9C C8 0A 00 00 >> 00 00 >> >>> E8 9B C8 0A 00 00 00 00 00 00 00 00 8D A0 7E 08 08 00 00 00 70 0C 15 >> E8 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 18 9C C8 0A 07 00 00 00 73 0C 15 E8 >> 41 00 >> >>> 00 00 00 00 00 00 00 00 00 00 A8 9B C8 0A 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 28 FF 83 08 08 00 00 00 70 0C 15 E8 00 00 00 00 F8 19 79 08 01 00 >> 00 00 >> >>> 6B 65 79 63 6F 6C 6C 00 61 63 6B 22 49 00 00 00 A8 9B C8 0A 70 9C C8 >> 0A 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 58 9C C8 0A 0D 00 00 00 >> 70 0C >> >>> 15 E8 00 00 00 00 73 0C 15 E8 00 00 00 00 69 6E 73 74 61 6E 63 65 54 >> 79 70 >> >>> 65 00 00 00 00 98 9A B4 0A 41 00 00 00 28 9C C8 0A A8 EB 1D 0A 00 00 >> 00 00 >> >>> B0 9C C8 0A 00 00 00 00 00 00 00 00 8D A0 7E 08 08 00 00 00 70 0C 15 >> E8 00 >> >>> 00 00 00 5C 70 69 70 65 5C 73 70 E0 9C C8 0A 01 00 00 00 00 00 00 00 >> 39 00 >> >>> 00 00 00 00 00 00 00 00 00 00 70 9C C8 0A 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 28 FF 83 08 02 00 00 00 70 0C 15 E8 00 00 00 00 73 0C 15 E8 00 00 >> 00 00 >> >>> 34 00 15 E8 19 00 00 00 80 98 C8 0A 78 C3 9B 0A 80 9D 08 0A 94 47 8E >> 08 18 >> >>> 00 00 00 18 00 00 00 00 00 00 00 AC 6B 0C 0A B4 6B 0C 0A 10 AD CE 0A >> A4 72 >> >>> 00 00 19 00 00 00 43 4F 4D 50 41 4E 59 2E 4C 4F 43 41 4C 00 20 20 2B >> 1C F2 >> >>> E8 41 00 00 00 00 00 00 00 00 00 00 00 D8 86 0C 0A 00 00 00 00 00 00 >> 00 00 >> >>> 30 2B 04 0E 6D 73 54 53 4D 61 6E 61 67 69 6E 67 4C 53 31 19 04 17 30 >> 30 34 >> >>> 37 37 2D 30 30 31 2D 39 36 38 30 33 33 36 2D 38 34 37 36 38 30 1E 04 >> 12 6D >> >>> 73 54 53 4C 69 63 65 6E 73 65 56 65 72 73 69 6F 6E 31 08 04 06 33 39 >> 33 32 >> >>> 31 36 30 27 04 0E 6D 73 54 53 45 78 70 69 72 65 44 61 74 65 31 15 04 >> 13 32 >> >>> 30 31 37 30 35 30 36 30 36 30 33 32 30 2E 30 30 30 5A 30 22 04 0B 77 >> 68 65 >> >>> 6E 43 68 61 6E 67 65 64 31 13 04 11 32 30 31 37 30 33 30 37 30 36 30 >> 33 32 >> >>> 31 2E 30 5A 30 17 04 0A 75 53 4E 43 68 61 6E 67 65 64 31 09 04 07 31 >> 34 30 >> >>> 39 31 30 38 30 4B 04 11 64 69 73 74 69 6E 67 75 69 73 68 65 64 4E 61 >> 6D 65 >> >>> 31 36 04 34 43 4E 3D 6B 65 79 63 6F 6C 6C 2C 4F 55 3D 53 65 72 76 69 >> 63 65 >> >>> 2C 4F 55 3D 48 6F 6C 64 69 6E 67 2C 44 43 3D 63 6F 6D 70 61 6E 79 2C >> 44 43 >> >>> 3D 6C 6F 63 61 6C 30 0E 02 01 03 65 07 0A 01 00 04 00 04 00 A0 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00) >> >>> org.apache.mina.filter.codec.ProtocolDecoderException: >> >>> org.apache.directory.api.ldap.codec.api.ResponseCarryingException: The >> >>> length of controls must not be null (Hexdump: 20 00 20 00 20 00 20 00 >> 20 00 >> >>> 20 00 20 00 20 00 20 00 20 00 20 00 20 00 50 00 06 00 1A 00 08 00 01 >> 00 43 >> >>> 00 74 00 78 00 43 00 66 00 67 00 50 00 72 00 65 00 73 00 65 00 6E 00 >> 74 00 >> >>> 35 35 31 65 30 62 62 30 18 00 08 00 01 00 43 00 74 00 78 00 43 00 66 >> 00 67 >> >>> 00 46 00 6C 00 61 00 67 00 73 00 31 00 30 30 66 30 65 30 65 37 12 00 >> 08 00 >> >>> 01 00 43 00 74 00 78 00 53 00 68 00 61 00 64 00 6F 00 77 00 30 32 30 >> 30 30 >> >>> 30 30 30 2A 00 02 00 01 00 43 00 74 00 78 00 4D 00 69 00 6E 00 45 00 >> 6E 00 >> >>> 63 00 72 00 79 00 70 00 74 00 69 00 6F 00 6E 00 4C 00 65 00 76 00 65 >> 00 6C >> >>> 00 30 31 20 00 54 00 01 00 43 00 74 00 78 00 57 00 6F 00 72 00 6B 00 >> 44 00 >> >>> 69 00 72 00 65 00 63 00 74 00 6F 00 72 00 79 00 34 33 33 61 35 63 35 >> 30 37 >> >>> 32 36 66 36 37 37 32 36 31 36 64 32 30 34 36 36 39 36 63 36 35 37 33 >> 32 30 >> >>> 32 38 37 38 33 38 33 36 32 39 35 63 34 62 36 35 37 39 34 33 36 66 36 >> 63 36 >> >>> 63 36 35 36 33 37 34 36 66 37 32 35 37 35 30 34 36 34 38 34 34 34 34 >> 30 30 >> >>> 22 00 7C 00 01 00 43 00 74 00 78 00 49 00 6E 00 69 00 74 00 69 00 61 >> 00 6C >> >>> 00 50 00 72 00 6F 00 67 00 72 00 61 00 6D 00 34 33 33 61 35 63 35 30 >> 37 32 >> >>> 36 66 36 37 37 32 36 31 36 64 32 30 34 36 36 39 36 63 36 35 37 33 32 >> 30 32 >> >>> 38 37 38 33 38 33 36 32 39 35 63 34 62 36 35 37 39 34 33 36 66 36 63 >> 36 63 >> >>> 36 35 36 33 37 34 36 66 37 32 35 37 35 30 34 36 34 38 34 34 34 34 35 >> 63 34 >> >>> 62 36 35 37 39 34 33 36 66 36 63 36 63 36 35 36 33 37 34 36 66 37 32 >> 35 37 >> >>> 35 30 34 36 32 65 36 35 37 38 36 35 30 30 22 0A 41 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 70 B3 76 0A 00 00 00 00 00 00 00 00 00 00 00 00 28 FF 83 08 >> 08 00 >> >>> 00 00 70 0C 15 E8 00 00 00 00 78 B4 2E 0A 00 00 00 00 6B 65 79 63 6F >> 6C 6C >> >>> 00 00 00 00 00 41 00 00 00 70 B3 76 0A A8 9B C8 0A 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 98 9B C8 0A 0A 00 00 00 70 0C 15 E8 00 00 00 >> 00 D0 >> >>> 98 C8 0A 00 00 00 00 67 69 76 65 6E 4E 61 6D 65 00 79 08 41 00 00 00 >> 68 9B >> >>> C8 0A 28 9C C8 0A 00 00 00 00 E8 9B C8 0A 00 00 00 00 00 00 00 00 8D >> A0 7E >> >>> 08 08 00 00 00 70 0C 15 E8 00 00 00 00 00 00 00 00 00 00 00 00 18 9C >> C8 0A >> >>> 07 00 00 00 73 0C 15 E8 41 00 00 00 00 00 00 00 00 00 00 00 A8 9B C8 >> 0A 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 28 FF 83 08 08 00 00 00 70 0C 15 E8 >> 00 00 >> >>> 00 00 F8 19 79 08 01 00 00 00 6B 65 79 63 6F 6C 6C 00 61 63 6B 22 49 >> 00 00 >> >>> 00 A8 9B C8 0A 70 9C C8 0A 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 58 9C C8 0A 0D 00 00 00 70 0C 15 E8 00 00 00 00 73 0C 15 E8 00 00 00 >> 00 69 >> >>> 6E 73 74 61 6E 63 65 54 79 70 65 00 00 00 00 98 9A B4 0A 41 00 00 00 >> 28 9C >> >>> C8 0A A8 EB 1D 0A 00 00 00 00 B0 9C C8 0A 00 00 00 00 00 00 00 00 8D >> A0 7E >> >>> 08 08 00 00 00 70 0C 15 E8 00 00 00 00 5C 70 69 70 65 5C 73 70 E0 9C >> C8 0A >> >>> 01 00 00 00 00 00 00 00 39 00 00 00 00 00 00 00 00 00 00 00 70 9C C8 >> 0A 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 28 FF 83 08 02 00 00 00 70 0C 15 E8 >> 00 00 >> >>> 00 00 73 0C 15 E8 00 00 00 00 34 00 15 E8 19 00 00 00 80 98 C8 0A 78 >> C3 9B >> >>> 0A 80 9D 08 0A 94 47 8E 08 18 00 00 00 18 00 00 00 00 00 00 00 AC 6B >> 0C 0A >> >>> B4 6B 0C 0A 10 AD CE 0A A4 72 00 00 19 00 00 00 43 4F 4D 50 41 4E 59 >> 2E 4C >> >>> 4F 43 41 4C 00 20 20 2B 1C F2 E8 41 00 00 00 00 00 00 00 00 00 00 00 >> D8 86 >> >>> 0C 0A 00 00 00 00 00 00 00 00 30 2B 04 0E 6D 73 54 53 4D 61 6E 61 67 >> 69 6E >> >>> 67 4C 53 31 19 04 17 30 30 34 37 37 2D 30 30 31 2D 39 36 38 30 33 33 >> 36 2D >> >>> 38 34 37 36 38 30 1E 04 12 6D 73 54 53 4C 69 63 65 6E 73 65 56 65 72 >> 73 69 >> >>> 6F 6E 31 08 04 06 33 39 33 32 31 36 30 27 04 0E 6D 73 54 53 45 78 70 >> 69 72 >> >>> 65 44 61 74 65 31 15 04 13 32 30 31 37 30 35 30 36 30 36 30 33 32 30 >> 2E 30 >> >>> 30 30 5A 30 22 04 0B 77 68 65 6E 43 68 61 6E 67 65 64 31 13 04 11 32 >> 30 31 >> >>> 37 30 33 30 37 30 36 30 33 32 31 2E 30 5A 30 17 04 0A 75 53 4E 43 68 >> 61 6E >> >>> 67 65 64 31 09 04 07 31 34 30 39 31 30 38 30 4B 04 11 64 69 73 74 69 >> 6E 67 >> >>> 75 69 73 68 65 64 4E 61 6D 65 31 36 04 34 43 4E 3D 6B 65 79 63 6F 6C >> 6C 2C >> >>> 4F 55 3D 53 65 72 76 69 63 65 2C 4F 55 3D 48 6F 6C 64 69 6E 67 2C 44 >> 43 3D >> >>> 63 6F 6D 70 61 6E 79 2C 44 43 3D 6C 6F 63 61 6C 30 0E 02 01 03 65 07 >> 0A 01 >> >>> 00 04 00 04 00 A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 >> 00 00 >> >>> 00 00 00 00 00 00 00 00 00 00 00 00 00) >> >>> at org.apache.mina.filter.codec.ProtocolCodecFilter. >> messageRece >> >>> ived(ProtocolCodecFilter.java:240) >> >>> at org.apache.mina.core.filterchain. >> DefaultIoFilterChain.callNe >> >>> xtMessageReceived(DefaultIoFilterChain.java:542) >> >>> at org.apache.mina.core.filterchain.DefaultIoFilterChain. >> >>> access$1300(DefaultIoFilterChain.java:48) >> >>> at org.apache.mina.core.filterchain. >> DefaultIoFilterChain$EntryI >> >>> mpl$1.messageReceived(DefaultIoFilterChain.java:947) >> >>> at org.apache.mina.core.filterchain.IoFilterAdapter. >> messageRece >> >>> ived(IoFilterAdapter.java:109) >> >>> at org.apache.mina.core.filterchain. >> DefaultIoFilterChain.callNe >> >>> xtMessageReceived(DefaultIoFilterChain.java:542) >> >>> at org.apache.mina.core.filterchain. >> DefaultIoFilterChain.fireMe >> >>> ssageReceived(DefaultIoFilterChain.java:535) >> >>> at org.apache.mina.core.polling.AbstractPollingIoProcessor. >> read >> >>> (AbstractPollingIoProcessor.java:703) >> >>> at org.apache.mina.core.polling.AbstractPollingIoProcessor. >> proc >> >>> ess(AbstractPollingIoProcessor.java:659) >> >>> at org.apache.mina.core.polling.AbstractPollingIoProcessor. >> proc >> >>> ess(AbstractPollingIoProcessor.java:648) >> >>> at org.apache.mina.core.polling.AbstractPollingIoProcessor. >> acce >> >>> ss$600(AbstractPollingIoProcessor.java:68) >> >>> at org.apache.mina.core.polling.AbstractPollingIoProcessor$ >> Proc >> >>> essor.run(AbstractPollingIoProcessor.java:1120) >> >>> at org.apache.mina.util.NamePreservingRunnable.run( >> NamePreservi >> >>> ngRunnable.java:64) >> >>> at java.util.concurrent.ThreadPoolExecutor.runWorker( >> ThreadPool >> >>> Executor.java:1142) >> >>> at java.util.concurrent.ThreadPoolExecutor$Worker.run( >> ThreadPoo >> >>> lExecutor.java:617) >> >>> at java.lang.Thread.run(Thread.java:745) >> >>> Caused by: org.apache.directory.api.ldap.codec.api. >> ResponseCarryingException: >> >>> The length of controls must not be null >> >>> at org.apache.directory.api.ldap. >> codec.protocol.mina.LdapProtoc >> >>> olDecoder.decode(LdapProtocolDecoder.java:176) >> >>> at org.apache.directory.api.ldap. >> codec.protocol.mina.LdapProtoc >> >>> olDecoder.decode(LdapProtocolDecoder.java:92) >> >>> at org.apache.mina.filter.codec.ProtocolCodecFilter. >> messageRece >> >>> ived(ProtocolCodecFilter.java:231) >> >>> ... 15 common frames omitted >> >>> Caused by: org.apache.directory.api.asn1.DecoderException: The length >> of >> >>> controls must not be null >> >>> at org.apache.directory.api.ldap. >> codec.actions.controls.InitCon >> >>> trols.action(InitControls.java:73) >> >>> at org.apache.directory.api.ldap. >> codec.actions.controls.InitCon >> >>> trols.action(InitControls.java:41) >> >>> at org.apache.directory.api.asn1. >> ber.grammar.AbstractGrammar.ex >> >>> ecuteAction(AbstractGrammar.java:136) >> >>> at org.apache.directory.api.asn1. >> ber.Asn1Decoder.treatTLVDoneSt >> >>> ate(Asn1Decoder.java:600) >> >>> at org.apache.directory.api.asn1. >> ber.Asn1Decoder.decode(Asn1Dec >> >>> oder.java:736) >> >>> at org.apache.directory.api.ldap. >> codec.protocol.mina.LdapProtoc >> >>> olDecoder.decode(LdapProtocolDecoder.java:143) >> >>> ... 17 common frames omitted >> >>> ERROR 03-24 10:54:10.122 LdapLoginManagement.java 68766040 336 >> >>> org.apache.openmeetings.core.ldap.LdapLoginManagement >> >>> [http-nio-0.0.0.0-5080-exec-4] - LDAP entry is null, search or lookup >> by Dn >> >>> failed >> >>> >> >>> ----- Исходное сообщение ----- >> >>> > От: "Evgeniy Korneechev" <ekorneec...@remotesystems.ru> >> >>> > Кому: "user-russian" <user-russian@openmeetings.apache.org> >> >>> > Отправленные: Пятница, 24 Март 2017 г 11:54:19 >> >>> > Тема: LDAP-аутентификацию не работает >> >>> >> >>> > Всем привет! >> >>> > OpenMeetings >> >>> > Версия 3.2.1 / Ревизия 1787288 / Дата билда 2017/03/17 >> 05:19 >> >>> > >> >>> > Конфиг: >> >>> > # grep -v "#" ldap.cfg >> >>> > ldap_conn_host=192.168.111.10 >> >>> > ldap_conn_port=389 >> >>> > ldap_conn_secure=false >> >>> > ldap_search_base=DC=company,DC=local >> >>> > ldap_search_query=(sAMAccountName=%s) >> >>> > ldap_search_scope=SUBTREE >> >>> > ldap_auth_type=SIMPLEBIND >> >>> > ldap_userdn_format=CN=%s,OU=Service,OU=Holding,DC=company,DC=local >> >>> > ldap_provisionning=AUTOCREATE >> >>> > ldap_deref_mode=always >> >>> > ldap_use_admin_to_get_attrs=true >> >>> > ldap_sync_password_to_om=true >> >>> > ldap_user_attr_login=sAMAccountName >> >>> > ldap_user_attr_lastname=sn >> >>> > ldap_user_attr_firstname=givenName >> >>> > ldap_user_attr_mail=mail >> >>> > ldap_group_attr=memberOf >> >>> > ldap_use_lower_case=false >> >>> > >> >>> > При попытке входа c заведомо верным паролем в Вебе пишет неверный >> >>> пароль, >> >>> > а в логе следующее (весь выхлоп в error.log): >> >>> > >> >>> > [ERROR] [NioProcessor-66] >> >>> > org.apache.directory.api.ldap.codec.actions.controls.InitControls - >> >>> The length >> >>> > of controls must not be null >> >>> > WARN 03-24 10:54:10.115 LdapNetworkConnection.java 68766033 1912 >> >>> > org.apache.directory.ldap.client.api.LdapNetworkConnection >> >>> [NioProcessor-66] - >> >>> > org.apache.directory.api.ldap.codec.api.ResponseCarryingException: >> The >> >>> length >> >>> > of controls must not be null >> >>> > org.apache.mina.filter.codec.ProtocolDecoderException: >> >>> > org.apache.directory.api.ldap.codec.api.ResponseCarryingException: >> The >> >>> length >> >>> > of controls must not be null >> >>> > ... >> >>> > ERROR 03-24 10:54:10.122 LdapLoginManagement.java 68766040 336 >> >>> > org.apache.openmeetings.core.ldap.LdapLoginManagement >> >>> > [http-nio-0.0.0.0-5080-exec-4] - LDAP entry is null, search or lookup >> >>> by Dn >> >>> > failed >> >>> > >> >>> > Если ввести неверный пароль, то все нормально - ну то есть ошибка >> >>> > аутентификации: >> >>> > >> >>> > DEBUG 03-24 10:59:09.739 ProtocolCodecFilter.java 69065657 211 >> >>> > org.apache.mina.filter.codec.ProtocolCodecFilter [NioProcessor-67] - >> >>> Processing >> >>> > a MESSAGE_RECEIVED for session 56 >> >>> > ERROR 03-24 10:59:09.740 LdapLoginManagement.java 69065658 257 >> >>> > org.apache.openmeetings.core.ldap.LdapLoginManagement >> >>> > [http-nio-0.0.0.0-5080-exec-3] - Not authenticated. >> >>> > org.apache.directory.api.ldap.model.exception.LdapAuthentica >> >>> tionException: >> >>> > Simple Bind Failed: NT_STATUS_LOGON_FAILURE >> >>> > >> >>> > Проверил утилитой ldapsearch: >> >>> > $ ldapsearch -W -D CN=ekorneechev,OU=Service,OU=H >> >>> olding,DC=company,DC=local >> >>> > sAMAccountName=ekorneechev >> >>> > Все как нужно отрабатывает. >> >>> > >> >>> > Просмотрел tcpdump+wireshark - ответы от ldap сервера идентичны. >> >>> > >> >>> > Баг? Или что-то делаю не так? >> >>> > >> >>> > -- >> >>> > WBR, Korneechev Evgeniy >> >>> > BaseALT/ALTLinux Team >> >>> >> >>> -- >> >>> С уважением, >> >>> Корнеечев Евгений, >> >>> ООО "Удаленные системы", >> >>> Тел: +7 (495) 989-48-28 >> >>> Моб: +7 (929) 589-95-26 >> >>> Е-Майл: hotl...@rem-sys.ru (для заявок) >> >>> Е-Майл: e...@rem-sys.ru (личный) >> >>> >> >> >> >> >> >> >> >> -- >> >> WBR >> >> Maxim aka solomax >> >> >> > >> > >> > >> > -- >> > WBR >> > Maxim aka solomax >> >> -- >> С уважением, >> Корнеечев Евгений, >> ООО "Удаленные системы", >> Тел: +7 (495) 989-48-28 >> Моб: +7 (929) 589-95-26 >> Е-Майл: hotl...@rem-sys.ru (для заявок) >> Е-Майл: e...@rem-sys.ru (личный) >> > > > > -- > WBR > Maxim aka solomax -- С уважением, Корнеечев Евгений, ООО "Удаленные системы", Тел: +7 (495) 989-48-28 Моб: +7 (929) 589-95-26 Е-Майл: hotl...@rem-sys.ru (для заявок) Е-Майл: e...@rem-sys.ru (личный)
