Re: [xwiki-users] Help with AD authentication

You have to use current username and password: xwiki.authentication.ldap.bind_DN=yourdomain\{0} xwiki.authentication.ldap.bind_pass={1} not like you did: xwiki.authentication.ldap.bind_DN=crbsldap xwiki.authentication.ldap.bind_pass=******** Quoting Samuel Lee : Ok, so, I'm still getting nothing. I've been running a netstat, and I can see the xwiki trying to hit our ldap server on port 389. I've turned on debug logging, including ldap logging, but I'm getting no ldap messages. I'm seeing xwikiLogin attempts in the logs. Oh, and I don't know if this matters, but I'm using the XWiki Enterprise Manager 1.3.12583. Using the LDAP browser, I can see my ldap structure: host: ldap.ad.xxxx.yyy port: 389 Base DN: OU=CRBS,DC=AD,DC=XXXX, DC=YYY (No SSL, No Anonymous bind - requires login/pass to do queries) User DN: crbsldap (no append base DN) password: ********* Take a look at my configuration, and see if there's something wrong: xwiki .authentication .authclass=com.xpn.xwiki.user.impl.LDAP.XWikiLDAPAuthServiceImpl #-# XWiki LDAP authentication logging log4j.logger.com.xpn.xwiki.plugin.ldap=debug log4j.logger.com.xpn.xwiki.user.impl.LDAP=debug #-# Turn LDAP authentication on - otherwise only XWiki authentication #-# 0: disable #-# 1: enable^M xwiki.authentication.ldap=1 #-# LDAP Server (Active Directory, eDirectory, OpenLDAP, etc.)^M xwiki.authentication.ldap.server=ldap.ad.xxxx.yyy xwiki.authentication.ldap.port=389 #-# LDAP login, empty = anonymous access, otherwise specify full dn ^M #-# {0} is replaced with the username, {1} with the password # xwiki .authentication .ldap .bind_DN =cn={0},department=USER,department=INFORMATIK,department=1230,o=MP^M #####xwiki .authentication .ldap.bind_DN=cn=crbsldap,OU=USERS,OU=CRBS,DC=AD,DC=XXXX,DC=YYY # For xwiki.authentication.ldap.bind_DN=, I've tried crbsldap | cn=crbsldap | adcrbsldap | ad\crbsldap | cn=crbsldap,OU=USERS,OU=CRBS,DC=AD,DC=XXXX,DC=YYY xwiki.authentication.ldap.bind_DN=crbsldap xwiki.authentication.ldap.bind_pass=******** #-# Force to check password after LDAP connection #-# 0: disable #-# 1: enable xwiki.authentication.ldap.validate_password=1 ^M #-# only members of the following group will be verified in the LDAP^M # otherwise only users that are found after searching starting from the base_DN^M # xwiki .authentication .ldap.user_group=cn=developers,ou=groups,o=MegaNova,c=US^M ^M #-# base DN for searches^M xwiki.authentication.ldap.base_DN=OU=CRBS,DC=AD,DC=XXXX,DC=YYY ^M #-# Specifies the LDAP attribute containing the identifier to be used as the XWiki name (default=cn)^M xwiki.authentication.ldap.UID_attr=sAMAccountName _______________________________________________ users mailing list users(a)xwiki.org http://lists.xwiki.org/mailman/listinfo/users Ar cieņu, Mihails Links: ------ [1] mailto:samlee@ncmir.ucsd.edu