in case of ldap_auth_type=SIMPLEBIND only ldap_userdn_format=sAMAccountName=%s
is used. Are you sure you are able to login to your LDAP using " sAMAccountName=testuser" as login? On Tue, Mar 24, 2015 at 11:03 AM, FJ <[email protected]> wrote: > Maxim, this is my config > > ldap_conn_host=dc01.xxxyyy.local > ldap_conn_port=389 > ldap_conn_secure=false > > ldap_admin_dn=CN=mjane,OU=Employees,DC=xxxyyy,DC=local > > ldap_passwd=password > > ldap_search_base=OU=Employees,DC=xxxyyy,DC=local > > ldap_search_query=(sAMAccountName=%s),OU=Employees,DC=xxxyyy,DC=local > > ldap_search_scope=ONELEVEL > > ldap_auth_type=SIMPLEBIND > > ldap_userdn_format=sAMAccountName=%s > > ldap_provisionning=AUTOCREATE > > ldap_deref_mode=always > > ldap_use_admin_to_get_attrs=true > > ldap_sync_password_to_om=true > > ldap_user_attr_lastname=sn > ldap_user_attr_firstname=givenName > ldap_user_attr_mail=mail > ldap_user_attr_street=streetAddress > ldap_user_attr_additionalname=description > ldap_user_attr_fax=facsimileTelephoneNumber > ldap_user_attr_zip=postalCode > ldap_user_attr_country=co > ldap_user_attr_town=l > ldap_user_attr_phone=telephoneNumber > > ldap_use_lower_case=false > > On Mon, Mar 23, 2015 at 9:53 PM, Maxim Solodovnik <[email protected]> > wrote: > >> I'm afraid I need more detailed description of what is wrong >> otherwise I can't help >> >> On Tue, Mar 24, 2015 at 10:50 AM, FJ <[email protected]> wrote: >> >>> Maxim, I am using SIMPLEBIND.. Also try the other one with the same >>> result. I issue is the similar to the one of "Wrong Password" issue but it >>> get "Invalid password" instead. Something about the charcset. It said >>> it was resolve by you but sure of how. >>> >>> On Mon, Mar 23, 2015 at 9:34 PM, Maxim Solodovnik <[email protected]> >>> wrote: >>> >>>> what is your config? >>>> are you using SIMPLEBIND or SEARCHANDBIND? >>>> >>>> On Tue, Mar 24, 2015 at 8:16 AM, FJ <[email protected]> wrote: >>>> >>>>> I run the into the same issue as this hijenix <[email protected]>. >>>>> Just can't figure it out. ldapsearch search result is fine but it alway >>>>> said " >>>>> Invalid password" when trying to login with an AD account. Had no >>>>> issue on this on OM211 but OM304 does different. >>>>> >>>>> Please advise if you have any suggestion. >>>>> >>>>> On Fri, Feb 6, 2015 at 5:30 AM, Maxim Solodovnik <[email protected] >>>>> > wrote: >>>>> >>>>>> there were at least several successful configs reported to the >>>>>> mailing lists >>>>>> you can try to find them using search here: >>>>>> http://openmeetings.markmail.org/ >>>>>> >>>>>> On Fri, Feb 6, 2015 at 6:33 PM, kaushal jani <[email protected]> >>>>>> wrote: >>>>>> >>>>>>> its ok thanks for the help, if possible please provide me tested >>>>>>> demo config file. >>>>>>> >>>>>>> i thinks its bug in openmeetings 3.3? >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 19:27:35 +0700 >>>>>>> Subject: RE: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> I'm out of ideas :( >>>>>>> >>>>>>> WBR, Maxim >>>>>>> (from mobile, sorry for the typos) >>>>>>> On Feb 6, 2015 6:26 PM, "kaushal jani" <[email protected]> wrote: >>>>>>> >>>>>>> still get none user found in ldap with below settings >>>>>>> >>>>>>> ldap_search_query=(sAMAccountName=%1$s) >>>>>>> >>>>>>> ------------------------------ >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> Subject: RE: None user found in LDAP >>>>>>> Date: Fri, 6 Feb 2015 17:28:32 +0530 >>>>>>> >>>>>>> its working fine with below result >>>>>>> >>>>>>> # search result >>>>>>> search: 2 >>>>>>> result: 0 Success >>>>>>> >>>>>>> # numResponses: 2 >>>>>>> # numEntries: 1 >>>>>>> >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 18:51:46 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> then try >>>>>>> >>>>>>> ldapsearch -x -D "cn=test,cn=users,dc=demo,dc=dom" -w test123 -p >>>>>>> 389 -h x.x.x.x -b "cn=users,dc=demo,dc=dom" -s sub "(sAMAccountName >>>>>>> =*name_you_enter_in_login_here*)" >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:47 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> try with suggested but found none user in ldap again >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 18:40:38 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> great :) >>>>>>> >>>>>>> now try to set it like this: >>>>>>> ldap_search_query=(sAMAccountName=%1$s) >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:38 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> as per ur suggesstion, when i change query parameter as per >>>>>>> ldapsearch, got below error >>>>>>> >>>>>>> my new ldap_search_query=(objectClass=*) >>>>>>> >>>>>>> >>>>>>> DEBUG 02-06 17:05:02.006 o.a.o.l.LdapLoginManagement:165 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - LdapLoginmanagement.doLdapLogin >>>>>>> ERROR 02-06 17:05:02.083 o.a.o.l.LdapLoginManagement:255 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - *more than 1 user found in LDAP* >>>>>>> INFO 02-06 17:05:02.084 o.a.d.l.c.a.LdapNetworkConnection:1870 >>>>>>> [NioProcessor-146] - There is no future associated with the messageId 2, >>>>>>> ignoring the message >>>>>>> DEBUG 02-06 17:05:02.085 o.a.w.u.c.CookieUtils:266 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with >>>>>>> name=LoggedIn >>>>>>> and request URI=signin?3-1.IBehaviorListener.1-signin >>>>>>> DEBUG 02-06 17:05:02.090 o.a.w.f.FeedbackMessages:69 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message >>>>>>> '[FeedbackMessage >>>>>>> message = "Unknown error. Please report this to the administrator.", >>>>>>> reporter = signin, level = ERROR]' >>>>>>> DEBUG 02-06 17:05:02.091 o.a.w.u.c.CookieUtils:266 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with >>>>>>> name=LoggedIn >>>>>>> and request URI=signin?3-1.IBehaviorListener.1-signin >>>>>>> DEBUG 02-06 17:05:02.093 o.a.wicket.Page:871 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count >>>>>>> = >>>>>>> 1], request >>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>>>>>> DEBUG 02-06 17:05:02.094 o.a.wicket.Page:871 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count >>>>>>> = >>>>>>> 1], request >>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>>>>>> DEBUG 02-06 17:05:02.094 o.a.wicket.Page:871 >>>>>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 3, render count >>>>>>> = >>>>>>> 1], request >>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@1a0d08d >>>>>>> DEBUG 02-06 17:05:02.105 >>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>>>> [sessionId=61BAF900150CB93ECCCEBC5A922E4A4B, pageId=3]... >>>>>>> DEBUG 02-06 17:05:02.105 o.a.w.p.DiskDataStore:186 >>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '3' in session >>>>>>> with id '61BAF900150CB93ECCCEBC5A922E4A4B' >>>>>>> >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 18:35:07 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> additionally ldapsearch uses IP address while OM config has name >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:31 PM, Maxim Solodovnik < >>>>>>> [email protected]> wrote: >>>>>>> >>>>>>> As I can see >>>>>>> ldap_search_query=(&(objectCategory=person)(objectClass=person)( >>>>>>> sAMAccountName=%1$s)) >>>>>>> differs from ldapsearch parameters >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:28 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> ldap_server_type=AD >>>>>>> ldap_conn_host=test.demo.dom >>>>>>> ldap_conn_port=389 >>>>>>> ldap_conn_secure=false >>>>>>> >>>>>>> ldap_admin_dn=cn=test,cn=users,dc=demo,dc=dom >>>>>>> >>>>>>> ldap_passwd=***** >>>>>>> >>>>>>> ldap_search_base=cn=users,dc=demo,dc=dom >>>>>>> >>>>>>> >>>>>>> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s)) >>>>>>> >>>>>>> ldap_search_scope= SUBTREE >>>>>>> >>>>>>> ldap_auth_type=SEARCHANDBIND >>>>>>> >>>>>>> ldap_userdn_format=sAMAccountName=%s,cn=users,dc=demo,dc=dom >>>>>>> ldap_provisionning=NONE >>>>>>> ldap_use_admin_to_get_attrs=true >>>>>>> ldap_sync_password_to_om=false >>>>>>> ldap_user_attr_firstname=givenName >>>>>>> ldap_user_attr_mail=mail >>>>>>> ldap_user_attr_street=streetAddress >>>>>>> ldap_user_attr_additionalname=description >>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber >>>>>>> ldap_user_attr_zip=postalCode >>>>>>> ldap_user_attr_country=co >>>>>>> ldap_user_attr_town=l >>>>>>> ldap_user_attr_phone=telephoneNumber >>>>>>> ldap_use_lower_case=false >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 18:21:02 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> and your final OM config? >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:20 PM, Maxim Solodovnik < >>>>>>> [email protected]> wrote: >>>>>>> >>>>>>> ant your final OM config? >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:18 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> ldapsearch -x -D "cn=test,cn=users,dc=demo,dc=dom" -w test123 -p 389 >>>>>>> -h x.x.x.x -b "cn=users,dc=demo,dc=dom" -s sub "(objectclass=*)" >>>>>>> >>>>>>> with below result >>>>>>> >>>>>>> # search result >>>>>>> search: 2 >>>>>>> result: 0 Success >>>>>>> >>>>>>> # numResponses: 62 >>>>>>> # numEntries: 61 >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 18:06:07 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> show me your ldapsearch command >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 5:03 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> please help me i am stuck at this stage from last 3 days.... >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 17:57:02 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> I have no time for it, sorry >>>>>>> Maybe someone else can help >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 4:53 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> if possible can you take teamviwer for it? >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 17:49:57 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> if ldapsearch works and OM is not, then there are some differences. >>>>>>> >>>>>>> I can't tell you what is wrong with your config since I don't have >>>>>>> access to your LDAP server >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 4:46 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> please also tell me my config file is ok? >>>>>>> >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 17:44:29 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> then it should work with OM as well >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 4:42 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> ldapsearch working fine with exact copy of config file >>>>>>> >>>>>>> ------------------------------ >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> Subject: RE: None user found in LDAP >>>>>>> Date: Fri, 6 Feb 2015 16:11:00 +0530 >>>>>>> >>>>>>> >>>>>>> hi, >>>>>>> >>>>>>> i tried with exact copy from config its working fine >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 17:11:23 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> please try to use "ldapsearch" with the exact values from your config >>>>>>> is it working? >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 4:04 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> i tried lower case but same result >>>>>>> >>>>>>> none user found in ldap >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 16:59:08 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> I see couple of issues here >>>>>>> 1) in you config LDAP DN is UPPER CASE, in your command line test it >>>>>>> is mixed case >>>>>>> 2) in your config search_base is CN=Users,DC=DEMO,DC=DOM, in >>>>>>> command line it is: dc=DEMO,dc=DOM >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 3:55 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> yes its working fine..... >>>>>>> >>>>>>> when i try ldapserach with below command then its working fine >>>>>>> >>>>>>> ldapsearch -x -D "cn=test,cn=Users,dc=demo,dc=dom" -w demo123 -p 389 >>>>>>> -h test.demo.dom -b "dc=DEMO,dc=DOM" -s sub "(objectclass=*)" >>>>>>> >>>>>>> ------------------------------ >>>>>>> Date: Fri, 6 Feb 2015 16:50:55 +0700 >>>>>>> Subject: Re: None user found in LDAP >>>>>>> From: [email protected] >>>>>>> To: [email protected] >>>>>>> >>>>>>> Have you tried to use LDAPExplorer and check >>>>>>> 1) admin creadentials >>>>>>> 2) search >>>>>>> >>>>>>> On Fri, Feb 6, 2015 at 3:47 PM, kaushal jani <[email protected]> >>>>>>> wrote: >>>>>>> >>>>>>> please help me regarding my configuration for LDAP. >>>>>>> >>>>>>> my config file is as below >>>>>>> >>>>>>> ldap_server_type=AD >>>>>>> ldap_conn_host=test.demo.dom >>>>>>> ldap_conn_port=389 >>>>>>> ldap_conn_secure=false >>>>>>> >>>>>>> ldap_admin_dn=CN=test,CN=Users,DC=DEMO,DC=DOM >>>>>>> >>>>>>> ldap_passwd=***** >>>>>>> >>>>>>> ldap_search_base=CN=Users,DC=DEMO,DC=DOM >>>>>>> >>>>>>> >>>>>>> ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s)) >>>>>>> >>>>>>> ldap_search_scope= SUBTREE >>>>>>> >>>>>>> ldap_auth_type=SEARCHANDBIND >>>>>>> >>>>>>> ldap_userdn_format=sAMAccountName=%s,CN=Users,DC=DEMO,DC=DOM >>>>>>> ldap_provisionning=NONE >>>>>>> ldap_use_admin_to_get_attrs=true >>>>>>> ldap_sync_password_to_om=false >>>>>>> ldap_user_attr_firstname=givenName >>>>>>> ldap_user_attr_mail=mail >>>>>>> ldap_user_attr_street=streetAddress >>>>>>> ldap_user_attr_additionalname=description >>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber >>>>>>> ldap_user_attr_zip=postalCode >>>>>>> ldap_user_attr_country=co >>>>>>> ldap_user_attr_town=l >>>>>>> ldap_user_attr_phone=telephoneNumber >>>>>>> ldap_use_lower_case=false >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> WBR >>>>>> Maxim aka solomax >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> jt >>>>> ________________________________ >>>>> John Tran >>>>> Northern California, CA >>>>> [email protected] >>>>> ICQ IM: 27741710 >>>>> AOL IM: find1ngj0hn >>>>> Yahoo! IM: findingj0hn >>>>> MSN IM: [email protected] >>>>> >>>> >>>> >>>> >>>> -- >>>> WBR >>>> Maxim aka solomax >>>> >>> >>> >>> >>> -- >>> jt >>> ________________________________ >>> John Tran >>> Northern California, CA >>> [email protected] >>> ICQ IM: 27741710 >>> AOL IM: find1ngj0hn >>> Yahoo! IM: findingj0hn >>> MSN IM: [email protected] >>> >> >> >> >> -- >> WBR >> Maxim aka solomax >> > > > > -- > jt > ________________________________ > John Tran > Northern California, CA > [email protected] > ICQ IM: 27741710 > AOL IM: find1ngj0hn > Yahoo! IM: findingj0hn > MSN IM: [email protected] > -- WBR Maxim aka solomax
