<div dir="ltr"><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">Simon, I did get your response; thanks.  The rabbitmq.config portion I listed, is under</span><div>
<span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">rabbitmq_auth_backend_ldap.  The ldap plugin is enabled and loaded.  A tcpdump shows that</span></div>
<div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">it is indeed communicating with the ldap server.</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>
</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">The issues are</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>
</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">(1) the plugin is not logging debug info; neither {log, true} or {log, network} work</span></div>
<div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">(2) I&#39;m unable to authenticate via ldap</span><br></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>
</span></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, May 8, 2013 at 9:27 AM, Simon MacMullen <span dir="ltr">&lt;<a href="mailto:simon@rabbitmq.com" target="_blank">simon@rabbitmq.com</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi. Did you see my response to your other mail here: <a href="http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/2013-May/026993.html" target="_blank">http://lists.rabbitmq.com/<u></u>pipermail/rabbitmq-discuss/<u></u>2013-May/026993.html</a>?<br>

<br>
You also say &quot;I&#39;ve been unsuccessful&quot;. What is the actual problem?<br>
<br>
Cheers, Simon<br>
<br>
On 08/05/13 14:50, <a href="mailto:chads.finishing.strong@gmail.com" target="_blank">chads.finishing.strong@gmail.<u></u>com</a> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I&#39;m trying to get the LDAP plugin to work.  At this point, it does not<br>
log when &quot;log&quot; is set to &quot;true&quot; or &quot;network&quot;, so I&#39;ve been using tcpdump.<br>
Anyways, I&#39;m trying to take what I use in PHP/Zend<br>
(Zend_Auth_Adapter_Ldap):<br>
ldap.primary.host = &#39;<a href="http://ldap.example.com" target="_blank">ldap.example.com</a>&#39;<br>
ldap.primary.baseDn = &#39;dc=example,dc=com&#39;<br>
ldap.primary.accountDomainName = &#39;<a href="http://example.com" target="_blank">example.com</a>&#39;<br>
ldap.primary.<u></u>accountDomainNameShort = &#39;example&#39;<br>
ldap.primary.username = &#39;example\ldapadmin&#39;<br>
ldap.primary.password = &#39;mypasswd&#39;<br>
ldap.primary.<u></u>accountFilterFormat =<br>
&#39;(&amp;(objectClass=user)(<u></u>sAMAccountName=%s))&#39;<br>
and use that data to configure the rabbitmq ldap plugin:<br>
&lt;snip&gt;<br>
{servers, [&quot;<a href="http://ldap.example.com" target="_blank">ldap.example.com</a>&quot;]},<br>
{dn_lookup_attribute, &quot;sAMAccountName&quot;},<br>
{dn_lookup_base, &quot;DC=example,DC=com&quot;},<br>
{user_dn_pattern, &quot;(sAMAccountName=${username}),<u></u>DC=example,DC=com&quot;}<br>
{other_bind, {&quot;example\\\ldapadmin&quot;, &quot;mypasswd&quot;}},<br>
{use_ssl, false},<br>
{port, 389},<br>
{log, network},<br>
{vhost_access_query,{constant, true}},<br>
{resource_access_query, {constant, true}},<br>
{tag_queries, [<br>
    {administrator, {constant, true}},<br>
    {management,    {constant, true}},<br>
    {monitoring,    {constant, true}}<br>
]}<br>
&lt;snip&gt;<br>
LDAP Entry snippet:<br>
dn: CN=Blart\, Paul,OU=MallCops,DC=example,<u></u>DC=com<br>
cn: Blart, Paul<br>
sAMAccountName: pblart<br>
userPrincipalName: <a href="mailto:pblart@example.com" target="_blank">pblart@example.com</a><br>
At this point I&#39;ve been unsuccessful.  It looks like my problem may be<br>
due to the &quot;dn_lookup_*&quot; and &quot;user_dn_pattern&quot; values?  Any help would<br>
be greatly appreciated.<br>
Thanks<br>
C<br>
<br>
<br>
______________________________<u></u>_________________<br>
rabbitmq-discuss mailing list<br>
<a href="mailto:rabbitmq-discuss@lists.rabbitmq.com" target="_blank">rabbitmq-discuss@lists.<u></u>rabbitmq.com</a><br>
<a href="https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss" target="_blank">https://lists.rabbitmq.com/<u></u>cgi-bin/mailman/listinfo/<u></u>rabbitmq-discuss</a><br>
<br><span class="HOEnZb"><font color="#888888">
</font></span></blockquote><span class="HOEnZb"><font color="#888888">
<br>
<br>
-- <br>
Simon MacMullen<br>
RabbitMQ, Pivotal<br>
</font></span></blockquote></div><br></div>