Hi,<br><br><div class="gmail_quote">On 5 September 2012 16:40, Derek Yarnell <span dir="ltr"><<a href="mailto:derek@umiacs.umd.edu" target="_blank">derek@umiacs.umd.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi,<br>
<br>
Thanks, got the TLS issues worked out and now I can authenticate<br>
correctly from the command line. However, when I log in from Sunstone<br>
it creates the user and sets a clear text password in the Password<br>
field. Then throws an error (OpenNebula is not running or there was a<br>
server exception. Please check the server logs.) and does not log the<br>
user in. If you use the full DN as the username field it will log in<br>
fine. Anyone else run into this?<br></blockquote><div><br></div><div>Did you change the sunstone auth method to opennebula_auth?</div><div><br></div><div><a href="http://opennebula.org/documentation:rel3.6:sunstone#opennebula_auth">http://opennebula.org/documentation:rel3.6:sunstone#opennebula_auth</a></div>
<div><br></div><div>Cheers</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
$ oneuser show 6<br>
USER 6 INFORMATION<br>
<br>
ID : 6<br>
NAME : uid=derektest,ou=people,dc=example,dc=com<br>
GROUP : users<br>
PASSWORD : MyPassword<br>
AUTH_DRIVER : ldap<br>
ENABLED : Yes<br>
<br>
USER TEMPLATE<br>
<br>
<br>
<br>
RESOURCE USAGE & QUOTAS<br>
<br>
<br>
Thanks,<br>
derek<br>
<div class="im"><br>
On 8/30/12 4:42 AM, Nicolas AGIUS wrote:<br>
> Hi,<br>
><br>
> You can check your ldap connection with the following command :<br>
><br>
> /var/lib/one/remotes/auth/ldap/authenticate username "" passwd<br>
><br>
> The password must be in clear text.<br>
> And note the second empty parameter.<br>
><br>
> Cheers<br>
> Nicolas AGIUS<br>
><br>
</div>> --- En date de : *Dim 26.8.12, Derek Yarnell /<<a href="mailto:derek@umiacs.umd.edu">derek@umiacs.umd.edu</a>>/* a<br>
<div><div class="h5">> écrit :<br>
><br>
><br>
> De: Derek Yarnell <<a href="mailto:derek@umiacs.umd.edu">derek@umiacs.umd.edu</a>><br>
> Objet: [one-users] LDAP Auth<br>
> À: <a href="mailto:users@lists.opennebula.org">users@lists.opennebula.org</a><br>
> Date: Dimanche 26 août 2012, 1h30<br>
><br>
> Hi,<br>
><br>
> I am trying to debug LDAP authentication but I am coming up short. I<br>
> have followed,<br>
><br>
> <a href="http://opennebula.org/documentation:rel3.6:ldap" target="_blank">http://opennebula.org/documentation:rel3.6:ldap</a><br>
><br>
> and patched,<br>
><br>
> <a href="http://dev.opennebula.org/issues/1171" target="_blank">http://dev.opennebula.org/issues/1171</a><br>
><br>
> I have set sunstone to use opennebula authentication,<br>
><br>
> :auth: opennebula<br>
><br>
> But I get only the error,<br>
><br>
> Sat Aug 25 19:28:59 2012 [ReM][D]: UserInfo method invoked<br>
> Sat Aug 25 19:28:59 2012 [ReM][E]: [UserInfo] User couldn't be<br>
> authenticated, aborting call.<br>
><br>
> But it never contacts the ldap server. Is there some test I can do from<br>
> the command line to test ldap authentication?<br>
><br>
> Thanks,<br>
> derek<br>
><br>
> --<br>
> ---<br>
> Derek T. Yarnell<br>
> University of Maryland<br>
> Institute for Advanced Computer Studies<br>
> _______________________________________________<br>
> Users mailing list<br>
</div></div>> <a href="mailto:Users@lists.opennebula.org">Users@lists.opennebula.org</a> </mc/compose?to=<a href="mailto:Users@lists.opennebula.org">Users@lists.opennebula.org</a>><br>
> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>
<div class="HOEnZb"><div class="h5">><br>
<br>
<br>
--<br>
---<br>
Derek T. Yarnell<br>
University of Maryland<br>
Institute for Advanced Computer Studies<br>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opennebula.org">Users@lists.opennebula.org</a><br>
<a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br>Daniel Molina<br>Project Engineer<br>OpenNebula - The Open Source Solution for Data Center Virtualization<br><a href="http://www.OpenNebula.org" target="_blank">www.OpenNebula.org</a> | <a href="mailto:dmolina@opennebula.org" target="_blank">dmolina@opennebula.org</a> | @OpenNebula<br>