You have to use current username and password:
xwiki.authentication.ldap.bind_DN=yourdomain\{0}
xwiki.authentication.ldap.bind_pass={1}
not like you did:
xwiki.authentication.ldap.bind_DN=crbsldap
xwiki.authentication.ldap.bind_pass=********
Quoting Samuel Lee : Ok, so, I'm still getting nothing. I've been
running a netstat, and I
can see the xwiki trying to hit our ldap server on port 389. I've
turned on debug logging, including ldap logging, but I'm getting no
ldap messages. I'm seeing xwikiLogin attempts in the logs. Oh, and
I
don't know if this matters, but I'm using the XWiki Enterprise
Manager
1.3.12583.
Using the LDAP browser, I can see my ldap structure:
host: ldap.ad.xxxx.yyy
port: 389
Base DN: OU=CRBS,DC=AD,DC=XXXX, DC=YYY
(No SSL, No Anonymous bind - requires login/pass to do queries)
User DN: crbsldap (no append base DN)
password: *********
Take a look at my configuration, and see if there's something
wrong:
xwiki
.authentication
.authclass=com.xpn.xwiki.user.impl.LDAP.XWikiLDAPAuthServiceImpl
#-# XWiki LDAP authentication logging
log4j.logger.com.xpn.xwiki.plugin.ldap=debug
log4j.logger.com.xpn.xwiki.user.impl.LDAP=debug
#-# Turn LDAP authentication on - otherwise only XWiki
authentication
#-# 0: disable
#-# 1: enable^M
xwiki.authentication.ldap=1
#-# LDAP Server (Active Directory, eDirectory, OpenLDAP, etc.)^M
xwiki.authentication.ldap.server=ldap.ad.xxxx.yyy
xwiki.authentication.ldap.port=389
#-# LDAP login, empty = anonymous access, otherwise specify full dn
^M
#-# {0} is replaced with the username, {1} with the password
#
xwiki
.authentication
.ldap
.bind_DN
=cn={0},department=USER,department=INFORMATIK,department=1230,o=MP^M
#####xwiki
.authentication
.ldap.bind_DN=cn=crbsldap,OU=USERS,OU=CRBS,DC=AD,DC=XXXX,DC=YYY
# For xwiki.authentication.ldap.bind_DN=, I've tried crbsldap |
cn=crbsldap | adcrbsldap | ad\crbsldap |
cn=crbsldap,OU=USERS,OU=CRBS,DC=AD,DC=XXXX,DC=YYY
xwiki.authentication.ldap.bind_DN=crbsldap
xwiki.authentication.ldap.bind_pass=********
#-# Force to check password after LDAP connection
#-# 0: disable
#-# 1: enable
xwiki.authentication.ldap.validate_password=1
^M
#-# only members of the following group will be verified in the
LDAP^M
# otherwise only users that are found after searching starting from
the base_DN^M
#
xwiki
.authentication
.ldap.user_group=cn=developers,ou=groups,o=MegaNova,c=US^M
^M
#-# base DN for searches^M
xwiki.authentication.ldap.base_DN=OU=CRBS,DC=AD,DC=XXXX,DC=YYY
^M
#-# Specifies the LDAP attribute containing the identifier to be
used
as the XWiki name (default=cn)^M
xwiki.authentication.ldap.UID_attr=sAMAccountName
_______________________________________________
users mailing list
[email protected]
http://lists.xwiki.org/mailman/listinfo/users
Ar cieņu, Mihails
Links:
------
[1] mailto:[EMAIL PROTECTED]
_______________________________________________
users mailing list
[email protected]
http://lists.xwiki.org/mailman/listinfo/users
