[one-users] LDAP Auth

[Javier Fontan]

Add default to the list of allowed auth methods in oned.conf. Something like:

 AUTH_MAD = [
     executable = "one_auth_mad",
     authn = "default,ssh,x509,ldap,server_cipher,server_x509"
 ]


On Wed, Aug 29, 2012 at 2:59 AM, Derek Yarnell <derek at umiacs.umd.edu> wrote:
> On 8/28/12 11:13 AM, Javier Fontan wrote:
>> Can you use the CLI?
>>
>> $ echo "<user dn>:<password>" > /tmp/auth_file
>> $ export ONE_AUTH=/tmp/auth_file
>> $ onevm list
>>
>> Check oned.log if you are not allowed to execute the last command.
>
> Hi,
>
> Thanks, I did try this.
>
> # printenv ONE_AUTH
> /tmp/auth_file
> # onevm list
> [VirtualMachinePoolInfo] User couldn't be authenticated, aborting call.
>
> # cat /var/log/one/oned.log
> Tue Aug 28 20:51:16 2012 [AuM][E]: Auth Error: Authentication driver
> 'default' not available
> Tue Aug 28 20:51:16 2012 [ReM][E]: [VirtualMachinePoolInfo] User
> couldn't be authenticated, aborting call.
>
> # ls -la /var/lib/one/remotes/auth/default/authenticate
> -rwxr-xr-x 1 oneadmin oneadmin 3181 Aug 28 20:53
> /var/lib/one/remotes/auth/default/authenticate
>
> oned.conf:
>
> AUTH_MAD = [
>     executable = "one_auth_mad",
>     authn = "ssh,x509,ldap,server_cipher,server_x509"
> ]
>
> Thanks,
> derek
>
> --
> ---
> Derek T. Yarnell
> University of Maryland
> Institute for Advanced Computer Studies



-- 
Javier Fontán Muiños
Project Engineer
OpenNebula - The Open Source Toolkit for Data Center Virtualization
www.OpenNebula.org | jfontan at opennebula.org | @OpenNebula