[ejabberd] LDAP Authentication

Theo Cushion theo at jivatechnology.com
Fri Nov 13 17:20:25 MSK 2009


Hi

I've been moving my system across to LDAP. However, ejabberd (2.1.0)  
never seems to even initiate an LDAP connection to my server (as  
observed from the logs on the LDAP server) - and no users are  
authenticated. There is nothing in the log (level 5) to suggest that  
LDAP is even being loaded.

My config is:

{auth_method, ldap}.
{ldap_servers,         ["edge-ejabberd.local"] }.
{ldap_port,            389 }.
{ldap_base,            "ou=users,dc=edge-ejabberd,dc=local" }.
{ldap_rootdn,          "cn=admin,dc=edge-ejabberd,dc=local" }.
{ldap_password,        "foobar" }.
{ldap_uids,            [{"uid", "%u"}] }.
{ldap_filter,          none }.
{ldap_local_filter,    undefined }.

This is an except from the log as a user tries to connect:

=INFO REPORT==== 2009-11-13 14:20:43 ===
I(<0.306.0>:ejabberd_listener:229) : (#Port<0.389>) Accepted  
connection {{192,168,1,120},59979} -> {{192,168,1,136},5222}

=INFO REPORT==== 2009-11-13 14:20:43 ===
D(<0.309.0>:ejabberd_receiver:320) : Received XML on stream = "<?xml  
version=\"1.0\"?>\n<stream:stream xmlns:stream=\"http://etherx.jabber.org/streams 
\" version=\"1.0\" xmlns=\"jabber:client\" to=\"edge-ejabberd.local\"  
xml:lang=\"en\" xmlns:xml=\"http://www.w3.org/XML/1998/namespace\" >\n"

=INFO REPORT==== 2009-11-13 14:20:43 ===
D(<0.310.0>:ejabberd_c2s:1376) : Send XML on stream = "<?xml  
version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' 
  id='1746798357' from='edge-ejabberd.local' version='1.0'  
xml:lang='en'>"

=INFO REPORT==== 2009-11-13 14:20:43 ===
D(<0.310.0>:ejabberd_c2s:1376) : Send XML on stream =  
"<stream:features><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp- 
sasl'><mechanism>PLAIN</mechanism></mechanisms></stream:features>"

=INFO REPORT==== 2009-11-13 14:20:43 ===
D(<0.309.0>:ejabberd_receiver:320) : Received XML on stream = "<auth  
xmlns=\"urn:ietf:params:xml:ns:xmpp-sasl\" mechanism=\"PLAIN\"  
 >AHRoZW8uY3VzaGlvbgBmcmVk</auth>"

=INFO REPORT==== 2009-11-13 14:20:43 ===
I(<0.310.0>:ejabberd_c2s:585) :  
({socket_state,gen_tcp,#Port<0.389>,<0.309.0>}) Failed authentication  
for theo.cushion at edge-ejabberd.local

=INFO REPORT==== 2009-11-13 14:20:43 ===
D(<0.310.0>:ejabberd_c2s:1376) : Send XML on stream = "<failure xmlns='urn:ietf:params:xml:ns:xmpp-sasl' 
 ><not-authorized/></failure>"

There is nothing else in the log during startup to suggest a module is  
not being loaded correctly.

What am I doing wrong?

Thanks

Theo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.jabber.ru/pipermail/ejabberd/attachments/20091113/093c5d87/attachment.html>


More information about the ejabberd mailing list