
<div dir="ltr"><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">Simon, I did get your response; thanks.  The rabbitmq.config portion I listed, is under</span><div>

<span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">rabbitmq_auth_backend_ldap.  The ldap plugin is enabled and loaded.  A tcpdump shows that</span></div>

<div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">it is indeed communicating with the ldap server.</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>

</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">The issues are</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>

</span></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">(1) the plugin is not logging debug info; neither {log, true} or {log, network} work</span></div>

<div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre">(2) I&#39;m unable to authenticate via ldap</span><br></div><div><span style="color:rgb(51,51,51);font-family:Consolas,Courier,Helvetica,Arial;font-size:14px;line-height:20px;white-space:pre"><br>

</span></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, May 8, 2013 at 9:27 AM, Simon MacMullen <span dir="ltr">&lt;<a href="mailto:simon@rabbitmq.com" target="_blank">simon@rabbitmq.com</a>&gt;</span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi. Did you see my response to your other mail here: <a href="http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/2013-May/026993.html" target="_blank">http://lists.rabbitmq.com/<u></u>pipermail/rabbitmq-discuss/<u></u>2013-May/026993.html</a>?<br>


<br>

You also say &quot;I&#39;ve been unsuccessful&quot;. What is the actual problem?<br>

<br>

Cheers, Simon<br>

<br>

On 08/05/13 14:50, <a href="mailto:chads.finishing.strong@gmail.com" target="_blank">chads.finishing.strong@gmail.<u></u>com</a> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

I&#39;m trying to get the LDAP plugin to work. �At this point, it does not<br>

log when &quot;log&quot; is set to &quot;true&quot; or &quot;network&quot;, so I&#39;ve been using tcpdump.<br>

Anyways, I&#39;m trying to take what I use in PHP/Zend<br>

(Zend_Auth_Adapter_Ldap):<br>

ldap.primary.host = &#39;<a href="http://ldap.example.com" target="_blank">ldap.example.com</a>&#39;<br>

ldap.primary.baseDn = &#39;dc=example,dc=com&#39;<br>

ldap.primary.accountDomainName = &#39;<a href="http://example.com" target="_blank">example.com</a>&#39;<br>

ldap.primary.<u></u>accountDomainNameShort = &#39;example&#39;<br>

ldap.primary.username = &#39;example\ldapadmin&#39;<br>

ldap.primary.password = &#39;mypasswd&#39;<br>

ldap.primary.<u></u>accountFilterFormat =<br>

&#39;(&amp;(objectClass=user)(<u></u>sAMAccountName=%s))&#39;<br>

and use that data to configure the rabbitmq ldap plugin:<br>

&lt;snip&gt;<br>

{servers, [&quot;<a href="http://ldap.example.com" target="_blank">ldap.example.com</a>&quot;]},<br>

{dn_lookup_attribute, &quot;sAMAccountName&quot;},<br>

{dn_lookup_base, &quot;DC=example,DC=com&quot;},<br>

{user_dn_pattern, &quot;(sAMAccountName=${username}),<u></u>DC=example,DC=com&quot;}<br>

{other_bind, {&quot;example\\\ldapadmin&quot;, &quot;mypasswd&quot;}},<br>

{use_ssl, false},<br>

{port, 389},<br>

{log, network},<br>

{vhost_access_query,{constant, true}},<br>

{resource_access_query, {constant, true}},<br>

{tag_queries, [<br>

� � {administrator, {constant, true}},<br>

� � {management, � �{constant, true}},<br>

� � {monitoring, � �{constant, true}}<br>

]}<br>

&lt;snip&gt;<br>

LDAP Entry snippet:<br>

dn: CN=Blart\, Paul,OU=MallCops,DC=example,<u></u>DC=com<br>

cn: Blart, Paul<br>

sAMAccountName: pblart<br>

userPrincipalName: <a href="mailto:pblart@example.com" target="_blank">pblart@example.com</a><br>

At this point I&#39;ve been unsuccessful. �It looks like my problem may be<br>

due to the &quot;dn_lookup_*&quot; and &quot;user_dn_pattern&quot; values? �Any help would<br>

be greatly appreciated.<br>

Thanks<br>

C<br>

<br>

<br>

______________________________<u></u>_________________<br>

rabbitmq-discuss mailing list<br>

<a href="mailto:rabbitmq-discuss@lists.rabbitmq.com" target="_blank">rabbitmq-discuss@lists.<u></u>rabbitmq.com</a><br>

<a href="https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss" target="_blank">https://lists.rabbitmq.com/<u></u>cgi-bin/mailman/listinfo/<u></u>rabbitmq-discuss</a><br>

<br><span class="HOEnZb"><font color="#888888">

</font></span></blockquote><span class="HOEnZb"><font color="#888888">

<br>

<br>

-- <br>

Simon MacMullen<br>

RabbitMQ, Pivotal<br>

</font></span></blockquote></div><br></div>