<html><head></head><body>Hi,<br>
i get the expected output<br>
-- <br>
Enviado desde mi teléfono Android con K-9 Mail. Disculpa mi brevedad<br><br><div class="gmail_quote">Tino Vazquez <tinova@opennebula.org> escribió:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<pre style="white-space: pre-wrap; word-wrap:break-word; font-family: sans-serif">Hi Carlos,<br /><br />Let's try executing the auth mad by hand (the error, from your input,<br />seems not to be exclusive of the ldap addon, but rather of the auth<br />module), to discard missing gems<br /><br /># $ONE_LOCATION/lib/mads/one_auth_mad<br /><br />after hitting return, it will wait for input, type<br /><br />INIT<br /><br />you should get<br /><br />INIT SUCCESS - -<br /><br />Regards,<br /><br />-Tino<br /><br />--<br />Constantino Vázquez Blanco, MSc<br />OpenNebula Major Contributor<br /><a href="http://www.OpenNebula.org">www.OpenNebula.org</a> | @tinova79<br /><br /><br /><br />On Mon, Jun 13, 2011 at 1:29 PM, Carlos A. <caralla@upv.es> wrote:<br />> Hi Tino,<br />><br />> more info on this.<br />><br />> While using my test script to authenticate I can see the sucess in the ldap<br />> server, I cannot see any information when trying to authenticat!
e using
ONE<br />><br />> El 13/06/11 12:43, Tino Vazquez escribió:<br />>><br />>> Hi Carlos,<br />>><br />>> This may be due to a eager timeout that the core imposes over the ldap<br />>> driver.<br />>><br />>> Please find attached a patch for the OpenNebula source code, please<br />>> apply it, recompile and reinstall, we would appreciate feedback on<br />>> wether this fixes the improper ldap plugin behavior or not.<br />>><br />>> Regards,<br />>><br />>> -Tino<br />>><br />>> --<br />>> Constantino Vázquez Blanco, MSc<br />>> OpenNebula Major Contributor<br />>> <a href="http://www.OpenNebula.org">www.OpenNebula.org</a> | @tinova79<br />>><br />>><br />>><br />>> On Sat, Jun 11, 2011 at 10:22 AM, Carlos A.<caralla@upv.es> wrote:<br />>>><br />>>> Hello,<br />>>><br />>>> any help on this? is lda!
p addon
supposed to work with opennebula 2.2? has<br />>>> anyone tried it?<br />>>><br />>>> El 09/06/2011 10:46, Carlos A. escribió:<br />>>>><br />>>>> Hello,<br />>>>><br />>>>> first of all, thank you for your response.<br />>>>><br />>>>> Once I have managed to make ldap_auth work, I found the following issue:<br />>>>><br />>>>> root@keo01:/srv/cloud/one# onevm list<br />>>>> execution expired<br />>>>><br />>>>> I cannot manage to athenticate against my ldap server. I have tried the<br />>>>> ldap authentication that is carried out by ONE<br />>>>><br />>>>> require 'rubygems'<br />>>>> require 'net/ldap'<br />>>>> ldap = Net::LDAP.new<br />>>>> ldap.host = "my.ldap.server"<br />>>>> ldap.port = 389<br />>>>> ldap.auth "my-!
dn",
"my-pass"<br />>>>> print ldap.bind<br />>>>><br />>>>> It is properly working, as my server authenticates me. I have (of<br />>>>> course)<br />>>>> tried changing the password and it works as expected.<br />>>>><br />>>>> Diving in the code It seems that there is some problem in the file<br />>>>> "src/um/<a href="http://UserPool.cc">UserPool.cc</a>", at<br />>>>> authm->trigger(AuthManager::AUTHENTICATE,&ar);<br />>>>> ar.wait();<br />>>>><br />>>>> Any idea?<br />>>>><br />>>>><br />>>>> El 09/06/11 00:51, Carsten.Friedrich@csiro.au escribió:<br />>>>>><br />>>>>> The official OpenNebula installation instructions for the ldap driver<br />>>>>> are<br />>>>>> incomplete and miss to mention some software pac!
kages
that you have to<br />>>>>> install first. I don't remember which ones they were, but you can find<br />>>>>> out<br />>>>>> as follows:<br />>>>>><br />>>>>> * cd to .../lib/ruby<br />>>>>> * execute 'ruby ldap_auth.rb'.<br />>>>>> * Ruby will complain about any missing packages. Install those until<br />>>>>> ruby<br />>>>>> is happy.<br />>>>>><br />>>>>> Carsten<br />>>>>><br />>>>>><br />>>>>> Carsten Friedrich<br />>>>>> Research Team leader<br />>>>>> ICT Centre, GPO Box 664,Canberra, ACT 2601<br />>>>>> Phone: +61 2 6216 7019<br />>>>>> Email: Carsten.Friedrich@csiro.au<br />>>>>> Web: <a href="http://www.csiro.au/org/ICT.html">http://www.csiro.au/org/ICT.html</a><br />>>>>!
;><br
/>>>>>><br />>>>>><br />>>>>> -----Original Message-----<br />>>>>> From: users-bounces@lists.opennebula.org<br />>>>>> [mailto:users-bounces@lists.opennebula.org] On Behalf Of Carlos A.<br />>>>>> Sent: Wednesday, 8 June 2011 18:17<br />>>>>> To: users@lists.opennebula.org<br />>>>>> Subject: Re: [one-users] Problem with ldap authentication<br />>>>>><br />>>>>> any help on this?<br />>>>>><br />>>>>> El 02/06/11 16:55, Carlos A. escribió:<br />>>>>>><br />>>>>>> More information on this:<br />>>>>>><br />>>>>>> in /srv/cloud/one/var/oned.log I can see<br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]: Init OpenNebula Log system<br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]: Log Level: 3<br
/>>>>>>> [0=ERROR,1=WARNING,2=INFO,3=DEBUG]<br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]:<br />>>>>>><hr /><br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]: OpenNebula Configuration File<br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]:<br />>>>>>><hr /><br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]:<br />>>>>>><hr /><br />>>>>>> AUTH_MAD=EXECUTABLE=/srv/cloud/one/lib/mads/one_auth_mad<br />>>>>>> DB=BACKEND=sqlite<br />>>>>>> DEBUG_LEVEL=3<br />>>>>>> DEFAULT_DEVICE_PREFIX=hd<br />>>>>>> DEFAULT_IMAGE_TYPE=OS<br />>>>>>> HM_MAD=EXECUTABLE=one_hm<br />>>>>>> HOST_MONITORING_INTERVAL=600<br />>>>>>> IMAGE_REPOSITORY_PATH=/srv/cloud/one/var//images<br />>>>>>>
IM_MAD=ARGUMENTS=-r 0 -t 15 kvm,EXECUTABLE=one_im_ssh,NAME=im_kvm<br />>>>>>> MAC_PREFIX=02:00<br />>>>>>> MANAGER_TIMER=15<br />>>>>>> NETWORK_SIZE=254<br />>>>>>> PORT=2633<br />>>>>>> SCRIPTS_REMOTE_DIR=/var/tmp/one<br />>>>>>> TM_MAD=ARGUMENTS=tm_nfs/tm_nfs.conf,EXECUTABLE=one_tm,NAME=tm_nfs<br />>>>>>> VM_DIR=/srv/cloud/one/var/<br />>>>>>> VM_HOOK=ARGUMENTS=$VMID,COMMAND=image.rb,NAME=image,ON=DONE<br />>>>>>> VM_MAD=ARGUMENTS=-t 15 -r 0<br />>>>>>><br />>>>>>><br />>>>>>> kvm,DEFAULT=vmm_ssh/vmm_ssh_kvm.conf,EXECUTABLE=one_vmm_ssh,NAME=vmm_kvm,TYPE=kvm<br />>>>>>> VM_POLLING_INTERVAL=600<br />>>>>>> VNC_BASE_PORT=5900<br />>>>>>><hr /><br />>>>>>> Thu Jun 2 16:52:09 2011 [ONE][I]:
Bootstraping OpenNebula database.<br />>>>>>> Thu Jun 2 16:52:09 2011 [VMM][I]: Starting Virtual Machine Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [LCM][I]: Starting Life-cycle Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [VMM][I]: Virtual Machine Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [InM][I]: Starting Information Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [InM][I]: Information Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [LCM][I]: Life-cycle Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [TrM][I]: Starting Transfer Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [DiM][I]: Starting Dispatch Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [TrM][I]: Transfer Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [DiM][I]: Dispatch Manager start!
ed.<br
/>>>>>>> Thu Jun 2 16:52:09 2011 [ReM][I]: Starting Request Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [ReM][I]: Starting XML-RPC server, port 2633<br />>>>>>> ...<br />>>>>>> Thu Jun 2 16:52:09 2011 [ReM][I]: Request Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [HKM][I]: Starting Hook Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [AuM][I]: Starting Auth Manager...<br />>>>>>> Thu Jun 2 16:52:09 2011 [AuM][I]: Authorization Manager started.<br />>>>>>> Thu Jun 2 16:52:09 2011 [HKM][I]: Hook Manager started.<br />>>>>>> Thu Jun 2 16:52:11 2011 [VMM][I]: Loading Virtual Machine Manager<br />>>>>>> drivers.<br />>>>>>> Thu Jun 2 16:52:11 2011 [VMM][I]: Loading driver: vmm_kvm (KVM)<br />>>>>>> Thu Jun 2 16:52:11 2011 [VMM][I]!
:
Driver vmm_kvm loaded.<br />>>>>>> Thu Jun 2 16:52:11 2011 [InM][I]: Loading Information Manager<br />>>>>>> drivers.<br />>>>>>> Thu Jun 2 16:52:11 2011 [InM][I]: Loading driver: im_kvm<br />>>>>>> Thu Jun 2 16:52:11 2011 [InM][I]: Driver im_kvm loaded<br />>>>>>> Thu Jun 2 16:52:11 2011 [TM][I]: Loading Transfer Manager drivers.<br />>>>>>> Thu Jun 2 16:52:11 2011 [VMM][I]: Loading driver: tm_nfs<br />>>>>>> Thu Jun 2 16:52:11 2011 [TM][I]: Driver tm_nfs loaded.<br />>>>>>> Thu Jun 2 16:52:11 2011 [HKM][I]: Loading Hook Manager driver.<br />>>>>>> Thu Jun 2 16:52:11 2011 [HKM][I]: Hook Manager loaded<br />>>>>>> Thu Jun 2 16:52:11 2011 [AuM][I]: Loading Auth. Manager driver.<br />>>>>>> Thu Jun 2 16:52:11 2011 [MAD][!
E]: MAD
did not answer INIT command<br />>>>>>> Thu Jun 2 16:52:12 2011 [ReM][D]: VirtualMachinePoolInfo method<br />>>>>>> invoked<br />>>>>>> Thu Jun 2 16:52:12 2011 [AuM][E]: Auth Error: Could not find<br />>>>>>> Authorization driver<br />>>>>>> Thu Jun 2 16:52:12 2011 [ReM][E]: [VirtualMachinePoolInfo] User<br />>>>>>> couldn't be authenticated, aborting call.<br />>>>>>><br />>>>>>> It seems that it cannot find the driver as a relative path name, but I<br />>>>>>> have also tried to use the full path of the auth driver.<br />>>>>>><br />>>>>>> Any help would be appreciated.<br />>>>>>><br />>>>>>> Regards,<br />>>>>>> Carlos A.<br />>>>>>><br />>>>>>><br />>>>>>> El 02/0!
6/11
11:39, Carlos A. escribió:<br />>>>>>>><br />>>>>>>> Hello,<br />>>>>>>><br />>>>>>>> I have just installed the ldap authentication addon on an fresh ONE<br />>>>>>>> install. I followed the instructions and I found that I cannot<br />>>>>>>> authenticate against the LDAP server.<br />>>>>>>><br />>>>>>>> what am I not doing in a wrong way?<br />>>>>>>><br />>>>>>>><hr /><br />>>>>>>> carlos@keo01:~$ onevm list<br />>>>>>>> [VirtualMachinePoolInfo] User couldn't be authenticated, aborting<br />>>>>>>> call.<br />>>>>>>><br />>>>>>>> carlos@keo01:~$ tail /srv/cloud/one/var/oned.log<br />>>>>>>> (...)<br />>>>>>>> Thu Jun 2
11:27:22 2011 [AuM][E]: Auth Error: Could not find<br />>>>>>>> Authorization driver<br />>>>>>>> Thu Jun 2 11:27:22 2011 [ReM][E]: [VirtualMachinePoolInfo] User<br />>>>>>>> couldn't be authenticated, aborting call.<br />>>>>>>> (...)<br />>>>>>>><br />>>>>>>> calfonso@keo01:/srv/cloud/one/lib/mads$ ls -l one_auth_mad*<br />>>>>>>> -rwxr-xr-x 1 oneadmin root 1632 Jun 2 09:53 one_auth_mad<br />>>>>>>> -rwxr-xr-x 1 oneadmin root 3341 Jun 2 09:58 one_auth_mad.rb<br />>>>>>>><br />>>>>>>> carlos@keo01:/srv/cloud/one/lib/mads$ ls -l<br />>>>>>>> /srv/cloud/one/lib/ruby/ldap_auth.rb<br />>>>>>>> -rw-r--r-- 1 oneadmin cloud 1340 Jun 2 09:58<br />>>>>>>> /srv/cloud/one/lib/ruby/ldap_auth.rb<br
/>>>>>>>><br />>>>>>>> *** content of /srv/cloud/one/etc/auth/auth.conf<br />>>>>>>> :database: sqlite://auth.db<br />>>>>>>> :authentication: ldap<br />>>>>>>> :quota:<br />>>>>>>> :enabled: false<br />>>>>>>> :defaults:<br />>>>>>>> :cpu: 10.0<br />>>>>>>> :memory: 1048576<br />>>>>>>> :ldap:<br />>>>>>>> :host: my.ldap.server<br />>>>>>>> :port: 389<br />>>>>>>><br />>>>>>>><br />>>>>>>> *** content of /srv/cloud/one/etc/oned.conf<br />>>>>>>> (...)<br />>>>>>>> AUTH_MAD = [<br />>>>>>>> executable = "one_auth_mad" ]<br />>>>>>>><br
/>>>>>>>><hr /><br />>>>>>>> Users mailing list<br />>>>>>>> Users@lists.opennebula.org<br />>>>>>>> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br />>>>>>><br />>>>>>><hr /><br />>>>>>> Users mailing list<br />>>>>>> Users@lists.opennebula.org<br />>>>>>> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br />>>>><br />>>>><hr /><br />>>>> Users mailing list<br />>>>> Users@lists.opennebula.org<br />>>>> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br />>>><br
/>>>> --<br />>>> Carlos de Alfonso Laguna<br />>>> Ingeniero de I+D<br />>>> Tel. +34 963877007, ext. 88254<br />>>> mailto: caralla@upv.es<br />>>><br />>>> La información incluida en el presente correo electrónico y, en su caso,<br />>>> sus<br />>>> anexos, es CONFIDENCIAL, siendo para el uso exclusivo del destinatario a<br />>>> quien va dirigido y puede contener información privilegiada, profesional<br />>>> u<br />>>> otra clase de información privada. Si usted recibe este mensaje y no es<br />>>> el<br />>>> destinatario señalado le informamos de que esta prohibida cualquier<br />>>> utilización del mismo sin previa autorización y le rogamos que nos lo<br />>>> notifique inmediatamente de vuelta a la dirección remitente y proceda a<br />>>> la<br />>>> destrucción del mismo.<br />>>><br
/>>>><hr /><br />>>> Users mailing list<br />>>> Users@lists.opennebula.org<br />>>> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br />>>><br />><br />><br />> --<br />><br />> Carlos de Alfonso Laguna<br />> Ingeniero de I+D<br />> Tel. +34 963877007, ext. 88254<br />> mailto: caralla@upv.es<br />><br />> La información incluida en el presente correo electrónico y, en su caso, sus<br />> anexos, es CONFIDENCIAL, siendo para el uso exclusivo del destinatario a<br />> quien va dirigido y puede contener información privilegiada, profesional u<br />> otra clase de información privada. Si usted recibe este mensaje y no es el<br />> destinatario señalado le informamos de que esta prohibida cualquier<br />> utilización del mismo sin previa autorización y le rogamos que nos lo<br />> notifique
inmediatamente de vuelta a la dirección remitente y proceda a la<br />> destrucción del mismo.<br />><br />><br /></pre></blockquote></div></body></html>