[rabbitmq-discuss] RabbitMQ 3.3.0 doesn't working with OpenLDAP ????
Ngọc Tăng Văn
ngoc.tang at quant-edge.com
Thu May 1 01:44:15 BST 2014
Dear Simon
I have enable the Ldap Plugin, But I can not login with OpenLdap, this is
the contents of log file
------ --- -- -------- -------------
> Server startup complete; 10 plugins started.
> * amqp_client
> * eldap
> * mochiweb
> * rabbitmq_auth_backend_ldap
> * rabbitmq_auth_mechanism_ssl
> * rabbitmq_federation_management
> * rabbitmq_management
> * rabbitmq_management_agent
> * rabbitmq_web_dispatch
> * webmachine
> =INFO REPORT==== 30-Apr-2014::09:31:56 === LDAP CHECK: login for
> test.rabbit
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP filling template "${username}" with
> [{username,<<"test.rabbit">>}]
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP template result: " test.rabbit "
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP connecting to servers: ["openldap.com"]
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP network traffic: bind request = {'BindRequest',3,"test.rabbit",
> {simple,<<"Mypassword">>}}
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP network traffic: bind reply = {ok,
> {'LDAPMessage',1,
> {bindResponse,
>
> {'BindResponse',invalidDNSyntax,[],
> "invalid DN",asn1_NOVALUE,
> asn1_NOVALUE}},
> asn1_NOVALUE}}
> =INFO REPORT==== 30-Apr-2014::09:31:56 ===
> LDAP bind error: test.rabbit invalidDNSyntax
> =INFO REPORT==== 30-Apr-2014::09:31:56 === LDAP DECISION: login for
> test.rabbit: {error,invalidDNSyntax}
> =ERROR REPORT==== 30-Apr-2014::09:31:56 === webmachine error:
> path="/api/whoami"
> "Unauthorized"
--------- -------------- -------------
And this is the contents of config file
-------------- ------------------
> [
> {rabbit, [
> {tcp_listeners, [{"10.x.x.x",5672}]},
> {ssl_listeners, [{"10.x.x.x",5671}]},
> {ssl_options, [{cacertfile,"/etc/rabbitmq/ssl/nvca/cacert.pem"},
> {certfile,"/etc/rabbitmq/ssl/server/cert.pem"},
> {keyfile,"/etc/rabbitmq/ssl/server/key.pem"},
> {verify,verify_none},
> {fail_if_no_peer_cert,false}]},
> {heartbeat, 15},
> {vm_memory_high_watermark_paging_ratio, 0.75},
> {vm_memory_high_watermark, 0.4},
> {auth_backends, [{rabbit_auth_backend_ldap,
> rabbit_auth_backend_internal},
> rabbit_auth_backend_internal]},
> {disk_free_limit, 40000000000}
> ]},
> {rabbitmq_auth_backend_ldap,
> [ {servers, ["openldap.com"]},
> {dn_lookup_attribute, {"uid=${username}}},
> {dn_lookup_base, {"dc=openldap,dc=com"}},
> {other_bind,
> ["cn=manager,cn=internal,dc=openldap,dc=com"," Ad09DSJwidjdwf89D"]},
> {use_ssl, false},
> {port, 389},
> {log, network},
> {vhost_access_query, {exists, "cn=${username},ou=allusers,
> dc=openldap,dc=com"}},
> {resource_access_query,
> {for, [{resource, exchange, {for, [{permission, configure,
> {in_group, "cn=${username},
> dc=openldap,dc=com "}
> },
> {permission, write, {constant, true}},
> {permission, read, {constant, true}}
> ]}},
> {resource, queue, {constant, true}}]}},
> {tag_queries, [{administrator, {constant, true}},
> {management, {constant, true}}]}
> ]
> }
> ].
-------------------- ------------
Help me, please.
Thanks so much
Ngoc Tang
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20140430/76581d49/attachment-0001.html>
More information about the rabbitmq-discuss
mailing list