<div dir="ltr">Tested on Fedora 17 and 18 (x86_64)<div><br></div><div><div>dev$ rabbitmqctl environment</div><div><br></div><div>Application environment of node 'rabbit@dev-1' ...</div><div>[{auth_backends,[rabbit_auth_backend_ldap,rabbit_auth_backend_internal]},</div>
<div> {auth_mechanisms,['PLAIN','AMQPLAIN']},</div><div> {backing_queue_module,rabbit_variable_queue},</div><div> {cluster_nodes,{[],disc}},</div><div> {cluster_partition_handling,ignore},</div><div> {collect_statistics,fine},</div>
<div> {collect_statistics_interval,10000},</div><div> {default_permissions,[<<".*">>,<<".*">>,<<".*">>]},</div><div> {default_user,<<"guest">>},</div>
<div> {default_user_tags,[administrator]},</div><div> {default_vhost,<<"/">>},</div><div> {delegate_count,16},</div><div> {disk_free_limit,1000000000},</div><div> {enabled_plugins_file,"/etc/rabbitmq/enabled_plugins"},</div>
<div> {error_logger,{file,"/var/log/rabbitmq/rabbit@dev-1.log"}},</div><div> {frame_max,131072},</div><div> {heartbeat,600},</div><div> {hipe_compile,false},</div><div> {included_applications,[]},</div><div> {log_levels,[{connection,info}]},</div>
<div> {msg_store_file_size_limit,16777216},</div><div> {msg_store_index_module,rabbit_msg_store_ets_index},</div><div> {plugins_dir,"/usr/lib/rabbitmq/lib/rabbitmq_server-3.1.0/sbin/../plugins"},</div><div> {plugins_expand_dir,"/var/lib/rabbitmq/mnesia/rabbit@dev-1-plugins-expand"},</div>
<div> {queue_index_max_journal_entries,65536},</div><div> {rabbitmq_auth_backend_ldap,</div><div> [{servers,["<a href="http://sfcodc01.example.com">sfcodc01.example.com</a>"]},</div><div> {dn_lookup_attribute,"sAMAccountName"},</div>
<div> {dn_lookup_base,"DC=example,DC=com"},</div><div> {user_dn_pattern,"example\\${username}"},</div><div> {use_ssl,false},</div><div> {port,389},</div><div> {log,true},</div>
<div> {vhost_access_query,{constant,true}},</div><div> {resource_access_query,{constant,true}},</div><div> {tag_queries,</div><div> [{administrator,{constant,true}},</div><div> {management,{constant,true}},</div>
<div> {monitoring,{constant,true}}]}]},</div><div> {reverse_dns_lookups,false},</div><div> {sasl_error_logger,{file,"/var/log/rabbitmq/rabbit@dev-1-sasl.log"}},</div><div> {server_properties,[]},</div>
<div> {ssl_cert_login_from,distinguished_name},</div><div> {ssl_listeners,[]},</div><div> {ssl_options,[]},</div><div> {tcp_listen_options,</div><div> [binary,</div><div> {packet,raw},</div><div> {reuseaddr,true},</div>
<div> {backlog,128},</div><div> {nodelay,true},</div><div> {linger,{true,0}},</div><div> {exit_on_close,false}]},</div><div> {tcp_listeners,[{"127.0.0.1",5672}]},</div><div> {trace_vhosts,[]},</div>
<div> {vm_memory_high_watermark,0.4}]</div><div>...done.</div><div><br></div><div>dev$ cat rabbitmq.config</div><div>[</div><div><br></div><div> {rabbit, [</div><div><br></div><div> {tcp_listeners, [{"127.0.0.1", 5672}]},</div>
<div><br></div><div> {log_levels, [{connection, info}]},</div><div><br></div><div> {collect_statistics_interval, 10000},</div><div><br></div><div> {auth_backends, [</div><div> rabbit_auth_backend_ldap, rabbit_auth_backend_internal</div>
<div> ]},</div><div><br></div><div> {rabbitmq_auth_backend_ldap, [</div><div><br></div><div> {servers, ["<a href="http://ldap.example.com">ldap.example.com</a>"]},</div><div> {other_bind, {"example\\\ptdldap", "mypasswd"}},</div>
<div> {dn_lookup_attribute, "sAMAccountName"},</div><div> {dn_lookup_base, "DC=example,DC=com"},</div><div> {user_dn_pattern, "(&(objectClass=user)(sAMAccountName=${username})),DC=example,DC=com"},</div>
<div> {use_ssl, false},<br></div><div> {port, 389},</div><div> {log, true},</div><div> {vhost_access_query, {constant, true}},</div><div> {resource_access_query, {constant, true}},</div>
<div> {tag_queries, [</div><div> {administrator, {constant, true}},</div><div> {management, {constant, true}},</div><div> {monitoring, {constant, true}}</div><div> ]}</div>
<div><br></div><div> ]}</div><div><br></div><div> ]},</div><div><br></div><div> {rabbitmq_management, [{listener, [{port, 9012}]}]},</div><div><br></div><div> {rabbitmq_management_agent, [{force_fine_statistics, true}]}</div>
<div><br></div><div>].</div></div><div><br></div><div style>I wouldn't put money on my dn_lookup_* or user_dn_pattern settings; I'm reaching, trying to get this to work.</div><div><br></div><div style>As far as the logs, **"nothing"** shows up; failed or otherwise.</div>
<div style><br></div><div style><div>dev$ cat *</div><div><br></div><div><div>=INFO REPORT==== 9-May-2013::07:35:23 ===</div><div>Starting RabbitMQ 3.1.0 on Erlang R15B03</div><div>Copyright (C) 2007-2013 VMware, Inc.</div>
<div>Licensed under the MPL. See <a href="http://www.rabbitmq.com/">http://www.rabbitmq.com/</a></div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:23 ===</div><div>node : rabbit@dev-1</div><div>home dir : /var/lib/rabbitmq</div>
<div>cookie hash : eGWdsIswL6rcJkTG9w+ZDQ==</div><div>log : /var/log/rabbitmq/rabbit@dev-1.log</div><div>sasl log : /var/log/rabbitmq/rabbit@dev-1-sasl.log</div><div>database dir : /var/lib/rabbitmq/mnesia/rabbit@dev-1</div>
<div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>Limiting to approx 924 file handles (829 sockets)</div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>Memory limit set to 1582MB of 3955MB total.</div>
<div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>Disk free limit set to 1000MB</div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>msg_store_transient: using rabbit_msg_store_ets_index to provide index</div>
<div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>msg_store_persistent: using rabbit_msg_store_ets_index to provide index</div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>
started TCP Listener on <a href="http://127.0.0.1:5672">127.0.0.1:5672</a></div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>Management plugin started. Port: 8012</div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div>
<div>Statistics database started.</div><div><br></div><div>=INFO REPORT==== 9-May-2013::07:35:24 ===</div><div>Server startup complete; 8 plugins started.</div><div> * amqp_client</div><div> * eldap</div><div> * mochiweb</div>
<div> * rabbitmq_auth_backend_ldap</div><div> * rabbitmq_management</div><div> * rabbitmq_management_agent</div><div> * rabbitmq_web_dispatch</div><div> * webmachine</div><div><br></div><div> RabbitMQ 3.1.0. Copyright (C) 2007-2013 VMware, Inc.</div>
<div> ## ## Licensed under the MPL. See <a href="http://www.rabbitmq.com/">http://www.rabbitmq.com/</a></div><div> ## ##</div><div> ########## Logs: /var/log/rabbitmq/rabbit@dev-1.log</div><div> ###### ## /var/log/rabbitmq/rabbit@dev-1-sasl.log</div>
<div> ##########</div><div> Starting broker... completed with 8 plugins.</div></div></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, May 9, 2013 at 4:58 AM, Simon MacMullen <span dir="ltr"><<a href="mailto:simon@rabbitmq.com" target="_blank">simon@rabbitmq.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="im">On 08/05/13 17:40, chads.finishing.strong wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Simon, I did get your response; thanks. The rabbitmq.config portion I<br>
listed, is under<br>
rabbitmq_auth_backend_ldap. The ldap plugin is enabled and loaded. A<br>
tcpdump shows that<br>
it is indeed communicating with the ldap server.<br>
<br>
The issues are<br>
<br>
(1) the plugin is not logging debug info; neither {log, true} or {log,<br>
network} work<br>
(2) I'm unable to authenticate via ldap<br>
</blockquote>
<br></div>
Hmm.<br>
<br>
The log config item definitely works. What does "rabbitmqctl environment" say?<br>
<br>
When you say "I'm unable to authenticate via ldap", what *does* show up in then logs?<br>
<br>
Can you post your complete config?<br>
<br>
Cheers, Simon<div class="HOEnZb"><div class="h5"><br>
<br>
-- <br>
Simon MacMullen<br>
RabbitMQ, Pivotal<br>
</div></div></blockquote></div><br></div>