[rabbitmq-discuss] Client certificate based authentication over SSL
Simon MacMullen
simon at rabbitmq.com
Thu Mar 27 21:09:27 GMT 2014
On 27/03/2014 14:56, Vinay Nayak wrote:
> {exit,as_user_no_password,'connection.start_ok',
So I think this ("as_user_no_password") is the least clear error message
I have ever perpetrated. It's getting made clearer in the next release.
What it's trying to say is:
"You have (successfully) authenticated a user without giving a password
(using client certs instead). However, the 'other_bind' configuration
item is set to 'as_user' which means that when I want to go to the LDAP
server for authorisation queries, I should bind to it with the user's
credentials. But I only know how to do that with the user's password.
Which I don't have."
It's not made any clearer by the fact that 'as_user' is the default
value for 'other_bind'.
So you must set 'other_bind' to 'anon' (bind anonymously for authZ
queries), or {"someuser", "somepassword"} (bind with those creds for authZ).
Cheers, Simon
More information about the rabbitmq-discuss
mailing list