[rabbitmq-discuss] Debugging AD

Ben Hood 0x6e6562 at gmail.com
Tue Nov 29 18:49:29 GMT 2011


Matthias,

On Tue, Nov 29, 2011 at 6:33 PM, Matthias Radestock
<matthias at rabbitmq.com> wrote:
> You'd get the above if the auth_backends config entry contained
> rabbitmq_auth_backend_ldap, which, as per the above, should be
> rabbit_auth_backend_ldap instead. That's what you have in the config you
> posted though, so I suspect the error is from a different run.

In the meantime, I've discovered what the issue was. When I activated
the plugin, I only activated the eldap module, not
rabbitmq_auth_backend_ldap. So after activating that, the LDAP query
appears to get submitting to the AD server.

However, now I appear to have problems with pushing my credentials through:

=INFO REPORT==== 29-Nov-2011::18:33:42 ===
LDAP backend: connecting to ["ad.acme.com"]

=INFO REPORT==== 29-Nov-2011::18:33:42 ===
LDAP backend: bind request = {'BindRequest',3,

"(sAMAccountName=ben.hood),DC=global,DC=acme,DC=Com",

{simple,<<"MLc#hv>Bk.Tr?M}$?TmruKNTaLXk{sDhmdLWoTC=xjcCWRP?g">>}}

=INFO REPORT==== 29-Nov-2011::18:33:42 ===
LDAP backend: bind reply = {ok,
                            {'LDAPMessage',1,
                             {bindResponse,
                              {'BindResponse',invalidCredentials,[],
                               [56,48,48,57,48,51,48,56,58,32,76,100,97,112,
                                69,114,114,58,32,68,83,73,68,45,48,67,48,57,
                                48,51,65,57,44,32,99,111,109,109,101,110,116,
                                58,32,65,99,99,101,112,116,83,101,99,117,114,
                                105,116,121,67,111,110,116,101,120,116,32,101,
                                114,114,111,114,44,32,100,97,116,97,32,53,50,
                                101,44,32,118,49,100,98,48,0],
                               asn1_NOVALUE,asn1_NOVALUE}},
                             asn1_NOVALUE}}

On other configurations that are known to work with this particular AD
server have to supply a AD username and password to submit the query,
so I was wondering whether I can configure this somewhere in the
rabbitmq.config?

Cheers,

Ben


More information about the rabbitmq-discuss mailing list