Question
I've setup Fedora Directory server, and am trying to get LDAP authentication setup. However, I keep getting the error message that the login user account doesn't exist - even though it does on the directory server. More details are below.I can authenticate to the directory server with the proxy user and make modifications etc. [root@lupsca bin]# ./ldapmodify -v -D 'uid=TWikiLdapUser,ou=Special Users,dc=lupsca,dc=arc,dc=ab,dc=ca' -w 'blabla' -Y 'dn:uid=TestUser,ou=People,dc=lupsca,dc=arc,dc=ab,dc=ca' ldapmodify: started Wed Dec 5 15:59:06 2007 ldap_init( localhost, 389 ) dn: uid=TestUser,ou=People,dc=lupsca,dc=arc,dc=ab,dc=ca changetype: modify replace: userPassword userPassword: blabla - replace userPassword: blabla modifying entry uid=TestUser,ou=People,dc=lupsca,dc=arc,dc=ab,dc=ca modify complete
I can see the groups I've setup on the directory server under TWiki's groups. The commands below also works as they should, display or updating etc.
#%LDAP{filter="(objectclass=*)" host="lupsca.arc.ab.ca" port="389" base="ou=TWikiGroups,DC=lupsca,dc=arc,dc=ab,dc=ca"}% #%LDAP{"(objectClass=*)"}% # INCLUDE{"TWiki.LdapContrib"}%
However, when I try to login as "TestUser" with this password, the httpd error logs say that "TestUser" is not found, even though this user is returned in the %LDAP{}% queries above.
The appropriate parts of my LocalSite.cfg file are below: $TWiki::cfg{Ldap}{Host} = 'lupsca.arc.ab.ca'; $TWiki::cfg{Ldap}{Port} = 389; $TWiki::cfg{Ldap}{Version} = '3'; $TWiki::cfg{Ldap}{Base} = 'dc=lupsca,dc=arc,dc=ab,dc=ca'; $TWiki::cfg{Ldap}{BindDN} = 'UID=TWikiLdapUser,ou=Special User,dc=lupsca,dc=arc,dc=ab,dc=ca'; $TWiki::cfg{Ldap}{BindPassword} = 'blabla'; $TWiki::cfg{Ldap}{SSL} = 0; $TWiki::cfg{Ldap}{UseSASL} = 0; $TWiki::cfg{Ldap}{SASLMechanism} = 'PLAIN CRAM-MD5 EXTERNAL ANONYMOUS'; $TWiki::cfg{Ldap}{Debug} = 1; $TWiki::cfg{Ldap}{UserBase} = 'ou=People,dc=lupsca,dc=arc,dc=ab,dc=ca'; $TWiki::cfg{Ldap}{LoginFilter} = 'objectClass=*'; $TWiki::cfg{Ldap}{LoginAttribute} = 'uid'; $TWiki::cfg{Ldap}{WikiNameAttribute} = 'uid'; $TWiki::cfg{Ldap}{NormalizeWikiNames} = 1; $TWiki::cfg{Ldap}{NormalizeLoginName} = 1; $TWiki::cfg{Ldap}{AllowChangePassword} = 1; $TWiki::cfg{Ldap}{SecondaryPasswordManager} = 'TWiki::Users::HtPasswdUser'; $TWiki::cfg{Ldap}{GroupBase} = 'ou=TWikiGroups,dc=lupsca,dc=arc,dc=ab,dc=ca'; $TWiki::cfg{Ldap}{GroupFilter} = 'objectClass=*'; $TWiki::cfg{Ldap}{GroupAttribute} = 'cn'; $TWiki::cfg{Ldap}{MemberAttribute} = 'uniqueMember'; $TWiki::cfg{Ldap}{MemberIndirection} = 1; $TWiki::cfg{Ldap}{TWikiGroupsBackoff} = 1; $TWiki::cfg{Ldap}{NormalizeGroupName} = 1; $TWiki::cfg{Ldap}{MapGroups} = 1; $TWiki::cfg{Ldap}{MaxCacheAge} = 86400; $TWiki::cfg{Ldap}{PageSize} = 500; $TWiki::cfg{Ldap}{Exclude} = 'TWikiGuest, TWikiContributor, TWikiRegistrationAgent, TWikiAdminGroup, NobodyGroup'; $TWiki::cfg{Plugins}{LdapNgPlugin}{Enabled} = 1; $TWiki::cfg{Plugins}{NewUserPlugin}{Enabled} = 1; 1;
Environment
Answer
If you answer a question - or have a question you asked answered by someone - please remember to edit the page and set the status to answered. The status is in a drop-down list below the edit box. 
Edit | Attach | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actionsTopic revision: r2 - 2007-12-06 - CraigAumann
Home 
Site map
Blog web
Search
Changes
RSS Feed
Notifications
Statistics
Preferences
Register new user
Support Forum 
Ask a question
Open questions 
My recent questions
Get quick help in #twiki IRC channel
Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.Copyright © 1999-2012 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.