[rabbitmq-discuss] RabbitMQ 3.3.0 Can not login with Open Ldap
dwang7630 at gmail.com
dwang7630 at gmail.com
Fri May 23 11:11:10 BST 2014
*Dear All*
*I'm try login to RabbitMQ, LDAP bind have return success. But I can not
login, and this is the log file*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
>
>
> *LDAP CHECK: login for David Wang*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP filling template
> "cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com" with*
> * [{username,<<"David Wang">>}]*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP template result: "cn=David
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com"*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP connecting to servers: ["quantedge.vn"]*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP network traffic: bind request = {'BindRequest',3,*
> * "cn=David
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com",*
> * {simple,<<"321`Rewq">>}}*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP network traffic: bind reply = {ok,*
> * {'LDAPMessage',1,*
> * {bindResponse,*
> * {'BindResponse',success,[],[],*
> * asn1_NOVALUE,asn1_NOVALUE}},*
> * asn1_NOVALUE}}*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP bind succeeded: cn=David
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP filling template
> "cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com" with*
> * [{username,<<"David Wang">>}]*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP template result: "cn=David
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com"*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP CHECK: does David Wang have tag administrator?*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP evaluating query: {constant,true}*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP evaluated constant: true*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP DECISION: does David Wang have tag administrator? true*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP CHECK: does David Wang have tag management?*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP evaluating query: {constant,true}*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP evaluated constant: true*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> * LDAP DECISION: does David Wang have tag management? true*
> *=INFO REPORT==== 23-May-2014::16:49:53 ===*
> *LDAP DECISION: login for David Wang: ok*
> *=ERROR REPORT==== 23-May-2014::16:49:53 ===*
> *webmachine error: path="/api/whoami"**"Unauthorized"*
>
> *I'm using command ldapsearch to find uid=david.wang*
> *dn: cn=David Wang,ou=Users,ou=Accounts,dc=scholar,dc=com*
> *uidNumber: 1311*
> *gidNumber: 63000*
> *homeDirectory: /home/david.wang*
> *pcnSHAPassword: {sha}***********************
> *pcnMicrosoftNTPassword: **********************
> *pcnMicrosoftLanmanPassword: ********************
> *pcnWebconfigFlag: TRUE*
> *givenName: David*
> *sn: Wang*
> *.*
> *.*
> *.*
> *pcnProxyFlag: TRUE*
> *pcnOpenVPNFlag: TRUE*
> *pcnPPTPFlag: TRUE*
> *pcnWebFlag: TRUE*
> *loginShell: /bin/bash*
> *pcnFTPFlag: FALSE*
> *pcnMailFlag: FALSE*
> *pcnGoogleAppsFlag: FALSE*
> *uid: david.wang**cn: David Wang*
And this is the contents of LDAP config
{rabbitmq_auth_backend_ldap,
[ {servers, ["10.0.10.10"]},
{user_dn_pattern,
"cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com"},
{dn_lookup_base, "dc=scholar,dc=com"},
{other_bind,
{"cn=manager,cn=internal,dc=scholar,dc=com","eRwFTGDFTooNI5ca"}},
{use_ssl, false},
{port, 389},
{log, network},
{vhost_access_query, {in_group,
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
{resource_access_query,
{for, [{permission, configure, {in_group,
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
{permission, write,
{for, [{resource, queue, {in_group,
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
{resource, exchange, {constant, true}}]}},
{permission, read,
{for, [{resource, exchange, {in_group,
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
{resource, queue, {constant, true}}]}}
]
}},
{tag_queries, [{administrator, {constant, true}},
{management, {constant, true}}]}
]
}
*Anybody Help me please ...!!!*
Thanks so much
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20140523/101835f4/attachment.html>
More information about the rabbitmq-discuss
mailing list