LDAP authentication for a user
Gavin Carr
gavin at openfusion.com.au
Fri Dec 28 20:06:55 UTC 2007
On Fri, Dec 28, 2007 at 08:08:52PM +0530, Rajesh Dharmalingam wrote:
> Hi,
>
> I have a user who needs to be authenticated:
>
> The ldap schema looks as below:
> dn: cn=a, cn=authenticated users, cn=abc, o=a1.com
> authenticationuserpassword: ****
> userPassword:: #######
> description: test
> objectClass: top
> objectClass: authenticationuser
> cn: a
That's one weird schema!
> As mentioned below, I provided in the djabberd conf file, and tried to login
> using the user a but the result is - user is not found...
> <Plugin DJabberd::Authen::LDAP>
> LDAPURI ldap://ip:port/
> LDAPBindDN o=a1.com
> LDAPBindPW ****
> LDAPBaseDN cn=authenticated users,cn=abc,o=a1.com
> LDAPFilter (cn=%u)
> </Plugin>
>
> When i give the same from a ldap browser as below, i am able to find the dn
> for this user
> Search dn: cn=authenticated users,cn=abc,o=a1.com
> Filter: cn = a
> I get the dn for this user.
>
> I tried with adding scope as 'sub' in the ldap plugin which gives the same
> result.
>
> One more thing is, SSL is required for ldap. so i did the required changes
> to the ldap plugin in djabberd and tried. I am getting the same result that
> "account a not found"..
>
> Can you provide some input?
This is just an issue of finding the right Net::LDAP incantation
for your schema. Try creating a minimal test script based on the
Net::LDAP parts of DJabberd::Authen::LDAP, and use that to debug
the Net::LDAP interaction.
Cheers,
Gavin
More information about the Djabberd
mailing list