[one-users] Again the Problem in LDAP integration with ONE

Javier Fontan jfontan at opennebula.org
Wed May 29 01:46:22 PDT 2013


You can use both username (that goes in 'user_field' named value) or
the full dc. The driver will search for both. Are you sure that your
user base dn is the one you have specified?

On Wed, May 29, 2013 at 8:43 AM, song <song.gao at venusource.com> wrote:
> Hello friends:
>
>      This is my ldap_auth.conf:
>
>         server 1:
>
>        :user: 'cn=mananger,dc=venusource,dc=com'
>
>         :password: 'P at ssw0rd'
>
>         :auth_method: :simple
>
>         :host: 192.168.0.122
>
>         :port: 389
>
>         # base hierarchy where to search for users and groups
>
>         #:base: 'cn=manager,dc=venusource,dc=com'
>
>         :base: 'ou=people,dc=euca,dc=venusource,dc=com'
>
>         # group the users need to belong to. If not set any user will do
>
>         #:group: 'ou=groups,ou=accounts,dc=euca,dc=venusource,dc=com'
>
>         :user_field: 'cn'
>        ******************************************
>     And this is my oned.conf:
>
>
>
>         AUTH_MAD = [
>
>                 executable = "one_auth_mad",
>
>                     authn =
> "ssh,x509,ldap,default,server_cipher,server_x509"
>
>         ]
>
>    And I also issue the command of:
>
>   cp -r var/remotes/auth/ldap/ var/remotes/auth/default
>
>     And I edit the sunstone-server.conf:
>
>     :auth: opennebula
>
>         ***************************
>
> Problem:1:When I want to login to sunstone,should I use the 'cn' field in
> ldap server or the whole string of DN in the user name field.
>
> 2:I tried both way above ,But the oned.log show like below:
>
>
>     Wed May 29 14:19:59 2013 [AuM][I]: Command execution fail: /srv/cloud/
>
>     one/var/remotes/auth/default/authenticate jack
>
>     Wed May 29 14:19:59 2013 [AuM][D]: Message received: LOG I 2 Trying se
>
>     rver server 1
>
>     Wed May 29 14:19:59 2013 [AuM][I]: Trying server server 1
>
>     Wed May 29 14:19:59 2013 [AuM][D]: Message received: LOG I 2 User jack
>
>     not found
>
>     Wed May 29 14:19:59 2013 [AuM][I]: User jack not found
>
>     Wed May 29 14:19:59 2013 [AuM][D]: Message received: LOG I 2 Could not
>
>     authenticate user jack
>
>     Wed May 29 14:19:59 2013 [AuM][I]: Could not authenticate user jack
>
>     Wed May 29 14:19:59 2013 [AuM][D]: Message received: LOG I 2 ExitCode:
>
>     255
>
>     Wed May 29 14:19:59 2013 [AuM][I]: ExitCode: 255
>
>     Wed May 29 14:19:59 2013 [AuM][D]: Message received: AUTHENTICATE FAIL
>
>     URE 2 -
>
>     Wed May 29 14:19:59 2013 [AuM][E]: Auth Error:
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opennebula.org
> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>



-- 
Join us at OpenNebulaConf2013 in Berlin from the 24th to the 26th of
September 2013!

Javier Fontán Muiños
Project Engineer
OpenNebula - The Open Source Toolkit for Data Center Virtualization
www.OpenNebula.org | jfontan at opennebula.org | @OpenNebula



More information about the Users mailing list