LDAP + MYSQL help

Wed, 22 Jun 2016 03:49:12 -0700 

Good morning everyone.
I made a fresh installation of guacamole 0.9.9 following the official documentation, with both LDAP and MYSQL extensions. When i made a login i saw on the ldap logs the connection incoming from the guacamole server, but not allways the systems allows me to login. 

My configuration follows:

cat /etc/guacamole/guacamole.properties
guacd-hostname: localhost
guacd-port: 4822


# Ldap properties

ldap-hostname:           xxxxx
ldap-port:               636
ldap-user-base-dn:       cn=guacamole,ou=Groups,dc=sld,dc=tld
ldap-username-attribute: memberUid
#ldap-config-base-dn:     cn=guacamole,ou=Groups,dc=sld,dc=tld
ldap-encryption-method:    ssl


ldap search correctly give me the users:


ldapsearch -x -h server -LLL -b"cn=guacamole,ou=Groups,dc=sld,dc=tld" 
"memberUid"

dn: cn=guacamole,ou=Groups,dc=sld,dc=tld
memberUid: guacadmin
memberUid: avivaldi




# MySQL properties
mysql-hostname: localhost
mysql-port: 3306
mysql-database: guacamoleAuthDB
mysql-username: guacamoleuser
mysql-password: xxxxxxx

# Additional settings
mysql-default-max-connections-per-user: 0
mysql-default-max-group-connections-per-user: 0


my mysql query:


mysql -u guacamoleuser -p guacamoleAuthDB -e'select * from guacamole_user;'
Enter password:
+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+

| user_id | username    | password_hash                    | 
password_salt                    | disabled | expired | 
access_window_start | access_window_end | valid_from | valid_until | 
timezone |

+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+

|       1 | guacadmin   | 
�E�}IN;�$���u�Ul��,-}�c;�J)�A`             | 
�$���+%(���zy�B��`d�iųw��"d               |        0 |       0 | 
NULL                | NULL              | NULL       | NULL        | 
NULL     |

|       4 | avivaldi    | i�7����hgTU�Od�?G�p+�N

E0�y>\E           | )���E#�yz�Rk�� �Ke7��m��� |        0 |       0 
| NULL                | NULL              | NULL       | NULL        | 
NULL     |

+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+


A tipical messages from my guacamole server is the following:



Jun 21 12:57:37 server: 12:57:37.243 [http-bio-8080-exec-10] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:04 server: 12:58:04.728 [http-bio-8080-exec-6] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:06 server: 12:58:06.707 [http-bio-8080-exec-6] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:12 server: 12:58:12.965 [http-bio-8080-exec-6] INFO 
o.g.g.n.b.r.a.AuthenticationService - User "avivaldi" successfully 
authenticated from ip.





with same username and same password, in some cases i obtain successful 
login and in other no clue.




Can someone help me to solve this issue?

Regards


--
Alberto Vivaldi















    











					Reply via email to