Not logged in. · Lost password · Register
Forum: General Help and Support Plugins RSS
Authldap did not work all the time
Avatar
boospy #1
Member for a month · 9 posts
Group memberships: Members
Show profile · Link to this post
Subject: Authldap did not work all the time
Hello all,

i have bind my dokuwiki to the Univention LDAP Server mit ldaps. The strange thing is, sometimes the login works, sometimes not. So i can't login about 5x, after that i can login 7x. Next time it is different. I've enabled debug for the ldapauthplugin and for the dokuwiki in the local.php with that options:
$conf['allowdebug'] = 1;
$conf['plugin']['authldap']['debug'] = 1;
The error message if login fails is "can't contact ldapserver". And the message on the ldapservers log if login fails ist:
Mar 23 16:59:47 ldapserver1.tux.lan slapd[6523]: conn=1151 fd=26 ACCEPT from IP=[2001:461:723c:ae1::9]:47054 (IP=[::]:7636)
Mar 23 16:59:47 ldapserver1.tux.lan[6523]: conn=1151 fd=26 TLS established tls_ssf=256 ssf=256
Mar 23 16:59:47 ldapserver1.tux.lan[6523]: conn=1151 fd=26 closed (connection lost)
And ldapsearch is working all the time, and the monitoring checkMK reports no error or flapping, also all other servers and services they use the same ldapserver working fine.
So how can i do more debug?

Here is my dokuwiki ldapconfig:
$conf['plugin']['authldap']['server'] = 'ldaps://ldapserver1.tux.lan:7636';
$conf['plugin']['authldap']['usertree'] = 'cn=tux-user,cn=users,dc=tux,dc=lan';
$conf['plugin']['authldap']['grouptree'] = 'cn=tux-groups,cn=groups,dc=tux,dc=lan';
$conf['plugin']['authldap']['userfilter'] = '(&(uid=%{user})(objectClass=posixAccount))';
$conf['plugin']['authldap']['groupfilter'] = '(&(objectClass=posixGroup)(|(gidNumber=%{gid})(memberUid=%{uid})))';
$conf['plugin']['authldap']['version'] = 3;
$conf['plugin']['authldap']['binddn'] = 'uid=wikireader,cn=users,dc=tux,dc=lan';
$conf['plugin']['authldap']['bindpw'] = 'secret';
$conf['plugin']['authldap']['debug'] = 0;
$conf['plugin']['authldap']['modPass'] = 0;
I also have entered the FQDN from the ldapserver in the hostsfile. Changed from Dualstack zu IPV4 and IPV6 only. No changes.

Wikiversion Greebo stable

Can someone help me with? :scared:  :-)  :-)
Very thanks and best regards
boospy
Avatar
boospy #2
Member for a month · 9 posts
Group memberships: Members
Show profile · Link to this post
Solved, using now the authAD Plugin, this is working fine.
Close Smaller – Larger + Reply to this post:
Verification code: VeriCode Please enter the word from the image into the text field below. (Type the letters only, lower case is okay.)
Smileys: :-) ;-) :-D :-p :blush: :cool: :rolleyes: :huh: :-/ <_< :-( :'( :#: :scared: 8-( :nuts: :-O
Special characters:
Go to forum
Imprint
This board is powered by the Unclassified NewsBoard software, 20150713-dev, © 2003-2015 by Yves Goergen
Current time: 2020-04-02, 22:19:25 (UTC +02:00)