[ejabberd] Unsucessful LDAP validation with some users

J. Ernesto suarez.ernesto at gmail.com
Wed Aug 19 19:12:12 MSD 2009


El 19/08/2009, a las 17:03, Evgeniy Khramtsov escribió:

> J. Ernesto wrote:
>> Hi List,
>>
>> I´m having problems with LDAP validation against a Active Directory  
>> PDC only with some users.
>>
>> In the ejabberd config I´ve added a full domain search with no  
>> filters in order to validate the users, but some of them can ´t  
>> validate.I ´ve looked for any variations between accounts with  
>> ldapsearch (ldap-tools) with no  significant results.. the accounts  
>> are equals!.
>>
>> In the log I can see how the ejabberd attempt to search the  
>> "faulty" account with no results...
>>
>> Any suggestion?
>>
>
> No suggestions without logs. Set {loglevel, 5} and show LDAP messages.
This is the log result... I can see how the ejabberd can´t find the  
required user.
======================================================================

==> ejabberd.log <==

=INFO REPORT==== 2009-08-19 17:10:34 ===
I(<0.262.0>:ejabberd_listener:112) : (#Port<0.447>) Accepted  
connection {{192,168,10,177},63898} -> {{192,168,10,184},5222}

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = "<?xml  
version='1.0' ?><stream:stream to='raminatrans.com' xmlns='jabber:client' 
  xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.436.0>:ejabberd_c2s:1336) : Send XML on stream = "<?xml  
version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' 
  id='3841216830' from='raminatrans.com' version='1.0' xml:lang='en'>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.436.0>:ejabberd_c2s:1336) : Send XML on stream =  
"<stream:features><starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/ 
 ><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp- 
sasl'><mechanism>PLAIN</mechanism></mechanisms><register xmlns='http://jabber.org/features/iq-register'/ 
 ></stream:features>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream =  
"<starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,0,1250694634760406},  
Size=51
M=25.5, I=9.694


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = []

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,992.1406894405104,
                                     1250694634786108}, Size=0
M=0.0, I=-14.869


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = []

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,496.0703447202552,
                                     1250694634786245}, Size=0
M=0.0, I=1.014


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = []

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,248.0351723601276,
                                     1250694634787264}, Size=0
M=0.0, I=1.462


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = []

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,124.0175861800638,
                                     1250694634788731}, Size=0
M=0.0, I=42.206


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream =  
"<stream:stream to='raminatrans.com' xmlns='jabber:client'  
xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,62.0087930900319,
                                     1250694634830951}, Size=120
M=61.91978558630001, I=0.72


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.436.0>:ejabberd_c2s:1336) : Send XML on stream = "<?xml  
version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' 
  id='4185388476' from='raminatrans.com' version='1.0' xml:lang='en'>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.436.0>:ejabberd_c2s:1336) : Send XML on stream =  
"<stream:features><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp- 
sasl'><mechanism>PLAIN</mechanism></mechanisms><register xmlns='http://jabber.org/features/iq-register'/ 
 ></stream:features>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:ejabberd_receiver:297) : Received XML on stream = "<auth  
xmlns='urn:ietf:params:xml:ns:xmpp-sasl' xmlns:ga='http://www.google.com/talk/protocol/auth' 
  ga:client-uses-full-bind-result='true'  
mechanism='PLAIN'>AHJtbi5pbmZvcm1hdGljYQBBMTIzNDU2JA==</auth>"

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.435.0>:shaper:61) : State: {maxrate,1000,0,1250694634832127},  
Size=199
M=99.5, I=63.048


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.267.0>:eldap:636) : {searchRequest,
                           {'SearchRequest',"DC=raminatrans,DC=com",
                            wholeSubtree,neverDerefAliases,0,0,false,
                            {'and',
                             [{equalityMatch,
                                
{'AttributeValueAssertion',"sAMAccountName",
                                "rmn.informatica"}},
                              {present,"memberOf"}]},
                            []}}


=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.267.0>:eldap:697) : {searchResRef,
                              ["ldap://ForestDnsZones.raminatrans.com/ 
DC=ForestDnsZones,DC=raminatrans,DC=com"]}

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.267.0>:eldap:697) : {searchResRef,
                              ["ldap://DomainDnsZones.raminatrans.com/ 
DC=DomainDnsZones,DC=raminatrans,DC=com"]}

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.267.0>:eldap:697) : {searchResRef,
                              ["ldap://raminatrans.com/ 
CN=Configuration,DC=raminatrans,DC=com"]}

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.267.0>:eldap:697) : {searchResDone,
                              {'LDAPResult',success,[],[],asn1_NOVALUE}}

=INFO REPORT==== 2009-08-19 17:10:34 ===
I(<0.436.0>:ejabberd_c2s:565) : ({socket_state,tls, 
{tlssock,#Port<0.447>,#Port<0.449>},<0.435.0>}) Failed authentication  
for rmn.informatica at raminatrans.com

=INFO REPORT==== 2009-08-19 17:10:34 ===
D(<0.436.0>:ejabberd_c2s:1336) : Send XML on stream = "<failure xmlns='urn:ietf:params:xml:ns:xmpp-sasl' 
 ><not-authorized/></failure>"

>
> -- 
> Regards,
> Evgeniy Khramtsov, ProcessOne.
> xmpp:xram at jabber.ru.
>
> _______________________________________________
> ejabberd mailing list
> ejabberd at jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd



More information about the ejabberd mailing list